PT-2020-15479 · Jenkins · Jenkins Blue Ocean Plugin +1
Name of the Vulnerable Software and Affected Versions: Jenkins Blue Ocean Plugin versions 1.23.2 and earlier Description: A missing permission check in the Jenkins Blue Ocean Plugin allows attackers with Overall/Read permission to connect to an attacker-specified URL. The HTTP request itself is...