CVE-2019-10292

Cross-Site Request Forgery (CSRF) in maven/rg.jenkins-ci.plugins/kmap-jenkins

Identifiers

GHSA-fvcf-wgxj-h7ch, CVE-2019-10292

Package Slug

maven/rg.jenkins-ci.plugins/kmap-jenkins

Vulnerability

Cross-Site Request Forgery (CSRF)

Description

A cross-site request forgery vulnerability in Jenkins Kmap Plugin in KmapJenkinsBuilder.DescriptorImpl form validation methods allows attackers to initiate a connection to an attacker-specified server.

Affected Versions

Version 1.6

Solution

Unfortunately, there is no solution available yet.

Last Modified

2024-01-31

source