GHSA-6w39-qhmq-g8cp, CVE-2022-29050
maven/org.jenkins-ci.plugins/publish-over-ftp
Cross-Site Request Forgery (CSRF)
A cross-site request forgery (CSRF) vulnerability in Jenkins Publish Over FTP Plugin 1.16 and earlier allows attackers to connect to an FTP server using attacker-specified credentials.
All versions before 1.17
Upgrade to version 1.17 or above.
2022-05-05
source |