Description
BuildTrigger in Jenkins before 1.551 and LTS before 1.532.2 allows remote authenticated users to bypass access restrictions and execute arbitrary jobs by configuring a job to trigger another job. NOTE: this vulnerability exists because of an incomplete fix for CVE-2013-7330.
Remediation
References
Related Vulnerabilities
Oracle Database Server CVE-2020-2737 Vulnerability (CVE-2020-2737)
PostgreSQL Permissions, Privileges, and Access Controls Vulnerability (CVE-2013-1901)
WordPress Plugin Easy Contact Form Pro Cross-Site Scripting (1.1.1.8)
WordPress Plugin Easy Social Icons Multiple Vulnerabilities (1.2.2)
WordPress Plugin CMS Tree Page View Multiple Vulnerabilities (1.4)