CVE-2020-2268
maven/io.jenkins.plugins/mongodb
Cross-Site Request Forgery (CSRF)
A cross-site request forgery (CSRF) vulnerability in Jenkins MongoDB Plugin allows attackers to gain access to some metadata of any arbitrary files on the Jenkins controller.
All versions up to 1.3
Unfortunately, there is no solution available yet.
2020-09-22
source |