A cross-site request forgery vulnerability in Jenkins Netsparker Cloud Scan Plugin 1.1.5 and older in the NCScanBuilder.DescriptorImpl#doValidateAPI form validation method allowed malicious users to initiate a connection to an attacker-specified server.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
jenkins netsparker cloud scan |