GHSA-j2mj-g8jp-gjfm, CVE-2022-41228
maven/io.jenkins.plugins/cavisson-ns-nd-integration
Missing Authorization
A missing permission check in Jenkins NS-ND Integration Performance Publisher Plugin 4.8.0.129 and earlier allows attackers with Overall/Read permissions to connect to an attacker-specified webserver using attacker-specified credentials.
All versions up to 4.8.0.129
Upgrade to version 4.8.0.130 or above.
2022-09-27
source |