A data modification vulnerability exists in Jenkins Agiletestware Pangolin Connector for TestRail Plugin 2.1 and previous versions in GlobalConfig.java that allows attackers with Overall/Read permission to override this plugin's configuration by sending crafted HTTP requests to an unprotected endpoint.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
agiletestware pangolin connector for testrail |