A cross-site request forgery (CSRF) vulnerability in Jenkins Benchmark Evaluator Plugin 1.0.1 and previous versions allows malicious users to connect to an attacker-specified URL and to check for the existence of directories, `.csv`, and `.ycsb` files on the Jenkins controller file system.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
jenkins benchmark evaluator |