CVE-2023-24423, GHSA-95jq-24cr-pgrq
maven/com.sonyericsson.hudson.plugins.gerrit/gerrit-trigger
Cross-Site Request Forgery (CSRF)
A cross-site request forgery (CSRF) vulnerability in Jenkins Gerrit Trigger Plugin 2.38.0 and earlier allows attackers to rebuild previous builds triggered by Gerrit.
All versions before 2.38.1
Upgrade to version 2.38.1 or above.
2023-01-27
source |