CVE-2022-41249
CVE-2022-41249 describes a CSRF vulnerability in the Jenkins SCM HttpClient Plugin (versions 1.5 and earlier). The flaw allows an attacker to cause Jenkins to connect to an attacker-controlled HTTP server using attacker-specified credentials IDs, enabling capture of credentials stored in Jenkins....