A cross-site request forgery vulnerability exists in Jenkins Warnings Next Generation Plugin 2.1.1 and previous versions in src/main/java/io/jenkins/plugins/analysis/warnings/groovy/GroovyParser.java that allows malicious users to execute arbitrary code via a form validation HTTP endpoint.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
jenkins warnings next generation |