CVE-2022-34817

Cross-Site Request Forgery (CSRF) in maven/de.einsundeins.jenkins.plugins.failedjobdeactivator/failedJobDeactivator

Identifiers

GHSA-cp6q-836q-gmj3, CVE-2022-34817

Package Slug

maven/de.einsundeins.jenkins.plugins.failedjobdeactivator/failedJobDeactivator

Vulnerability

Cross-Site Request Forgery (CSRF)

Description

A cross-site request forgery (CSRF) vulnerability in Jenkins Failed Job Deactivator Plugin 1.2.1 and earlier allows attackers to disable jobs.

Affected Versions

All versions up to 1.2.1

Solution

Unfortunately, there is no solution available yet.

Last Modified

2022-07-24

source