CVE-2022-34817
Cross-Site Request Forgery (CSRF) in maven/de.einsundeins.jenkins.plugins.failedjobdeactivator/failedJobDeactivator
Identifiers
GHSA-cp6q-836q-gmj3, CVE-2022-34817
Package Slug
maven/de.einsundeins.jenkins.plugins.failedjobdeactivator/failedJobDeactivator
Vulnerability
Cross-Site Request Forgery (CSRF)
Description
A cross-site request forgery (CSRF) vulnerability in Jenkins Failed Job Deactivator Plugin 1.2.1 and earlier allows attackers to disable jobs.
Affected Versions
All versions up to 1.2.1
Solution
Unfortunately, there is no solution available yet.
Last Modified
2022-07-24
| source |