Advisories for Maven/Org.jolokia/Jolokia-Core package

2022

Cross-Site Request Forgery (CSRF)

A flaw was found in Jolokia versions from 1.2 to before 1.6.1. Affected versions is vulnerable to a system-wide CSRF. This holds true for properly configured instances with strict checking for origin and referrer headers. This could result in a Remote Code Execution attack.