A missing permission check in Jenkins Fogbugz Plugin 2.2.17 and previous versions allows attackers with Item/Read permission to trigger builds of jobs specified in a 'jobname' request parameter.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
jenkins fogbugz |