Description
A cross-site request forgery (CSRF) vulnerability in Jenkins Jianliao Notification Plugin 1.1 and earlier allows attackers to send HTTP POST requests to an attacker-specified URL.
Remediation
References
https://www.jenkins.io/security/advisory/2022-06-22/#SECURITY-2240
Related Vulnerabilities
CVE-2014-0050 Vulnerability in maven package org.apache.tomcat:tomcat-coyote
CVE-2007-1358 Vulnerability in maven package tomcat:tomcat-http11
CVE-2023-31062 Vulnerability in maven package org.apache.inlong:manager-dao
CVE-2022-4147 Vulnerability in maven package io.quarkus:quarkus-vertx-http-deployment
CVE-2020-26870 Vulnerability in maven package org.webjars.npm:dompurify