CVE-2019-16550

Summary

A cross-site request forgery vulnerability in a connection test form method in Jenkins Maven Release Plugin 0.16.1 and earlier allows attackers to have Jenkins connect to an attacker specified web server and parse XML documents.

Affected Software

VendorProductVersion RangeStatus
Jenkins projectJenkins Maven Release Pluginunspecified <= 0.16.1affected

Weaknesses

ADP Enrichment

CVE Program Container

Additional References

References