Cross-site request forgery vulnerability in Jenkins Nomad Plugin
Moderate severity
GitHub Reviewed
Published
May 13, 2022
to the GitHub Advisory Database
•
Updated Aug 13, 2023
Description
Published by the National Vulnerability Database
Apr 4, 2019
Published to the GitHub Advisory Database
May 13, 2022
Reviewed
Aug 4, 2023
Last updated
Aug 13, 2023
Credits
-
joshbressers Analyst
A cross-site request forgery vulnerability in Jenkins Nomad Plugin in the NomadCloud.DescriptorImpl#doTestConnection form validation method allows attackers to initiate a connection to an attacker-specified server.
References