CVE-2019-1003090

Cross-Site Request Forgery (CSRF) in maven/com.soasta.jenkins/cloudtest

Identifiers

GHSA-23r7-hf6g-qqqg, CVE-2019-1003090

Package Slug

maven/com.soasta.jenkins/cloudtest

Vulnerability

Cross-Site Request Forgery (CSRF)

Description

A cross-site request forgery vulnerability in Jenkins SOASTA CloudTest Plugin in the CloudTestServer.DescriptorImpl#doValidate form validation method allows attackers to initiate a connection to an attacker-specified server.

Affected Versions

All versions up to 2.25

Solution

Unfortunately, there is no solution available yet.

Last Modified

2024-01-31

source