GHSA-fhgg-j92h-29rc, CVE-2019-1003091
maven/com.soasta.jenkins/cloudtest
Missing Authorization
A missing permission check in Jenkins SOASTA CloudTest Plugin in the CloudTestServer.DescriptorImpl#doValidate form validation method allows attackers with Overall/Read permission to initiate a connection to an attacker-specified server.
All versions up to 2.25
Unfortunately, there is no solution available yet.
2024-01-31
source |