GHSA-px2f-cqrf-f2qg, CVE-2023-24452
maven/org.jenkins-ci.plugins/testquality-updater
Cross-Site Request Forgery (CSRF)
A cross-site request forgery (CSRF) vulnerability in Jenkins TestQuality Updater Plugin 1.3 and earlier allows attackers to connect to an attacker-specified URL using attacker-specified username and password.
All versions up to 1.3
Unfortunately, there is no solution available yet.
2023-01-27
source |