CVE-2019-16551

Summary

A cross-site request forgery vulnerability in Jenkins Gerrit Trigger Plugin 2.30.1 and earlier allows attackers to connect to an attacker-specified HTTP URL or SSH server using attacker-specified credentials.

Affected Software

VendorProductVersion RangeStatus
Jenkins projectJenkins Gerrit Trigger Pluginunspecified <= 2.30.1affected

Weaknesses

ADP Enrichment

CVE Program Container

Additional References

References