Cross-Site Request Forgery Vulnerability in Jenkins JUnit Plugin 1.25 and Earlier: TestObject.java Description Manipulation

Cross-Site Request Forgery Vulnerability in Jenkins JUnit Plugin 1.25 and Earlier: TestObject.java Description Manipulation

CVE-2018-1000411 · MEDIUM Severity

AV:N/AC:M/AU:N/C:N/I:P/A:N

A cross-site request forgery vulnerability exists in Jenkins JUnit Plugin 1.25 and earlier in TestObject.java that allows setting the description of a test result.

Learn more about our Web Application Penetration Testing UK.