Description
A cross-site request forgery (CSRF) vulnerability in Jenkins ThreadFix Plugin 1.5.4 and earlier allows attackers to connect to an attacker-specified URL.
Remediation
References
https://www.jenkins.io/security/advisory/2022-06-22/#SECURITY-2249
Related Vulnerabilities
CVE-2020-2262 Vulnerability in maven package org.jenkins-ci.plugins:android-lint
CVE-2011-2092 Vulnerability in maven package com.adobe.blazeds:blazeds-core
CVE-2014-4611 Vulnerability in maven package net.jpountz.lz4:lz4
CVE-2023-33939 Vulnerability in maven package com.liferay:com.liferay.portal.search.web
CVE-2018-1000184 Vulnerability in maven package com.coravy.hudson.plugins.github:github