CVE-2023-24452

Cross-Site Request Forgery (CSRF) in maven/org.jenkins-ci.plugins/testquality-updater

Identifiers

GHSA-px2f-cqrf-f2qg, CVE-2023-24452

Package Slug

maven/org.jenkins-ci.plugins/testquality-updater

Vulnerability

Cross-Site Request Forgery (CSRF)

Description

A cross-site request forgery (CSRF) vulnerability in Jenkins TestQuality Updater Plugin 1.3 and earlier allows attackers to connect to an attacker-specified URL using attacker-specified username and password.

Affected Versions

All versions up to 1.3

Solution

Unfortunately, there is no solution available yet.

Last Modified

2023-01-27

source