Description
FilePath#renameTo and FilePath#moveAllChildrenTo in Jenkins 2.318 and earlier, LTS 2.303.2 and earlier only check 'read' agent-to-controller access permission on the source path, instead of 'delete'.
Remediation
References
Related Vulnerabilities
WordPress Plugin Plugin Central Multiple Cross-Site Scripting Vulnerabilities (2.5)
WordPress Plugin Relevanssi-A Better Search SQL Injection (3.2)
WordPress Plugin SnapApp Multiple Cross-Site Scripting Vulnerabilities (1.5)
Jenkins Insufficient Session Expiration Vulnerability (CVE-2019-1003003)
WordPress Plugin WP Symposium Arbitrary File Upload Vulnerabilities (11.11.26)