CVE-2022-30969

Summary

A cross-site request forgery (CSRF) vulnerability in Jenkins Autocomplete Parameter Plugin 1.1 and earlier allows attackers to execute arbitrary code without sandbox protection if the victim is an administrator.

Affected Software

VendorProductVersion RangeStatus
Jenkins projectJenkins Autocomplete Parameter Pluginunspecified <= 1.1affected
Jenkins projectJenkins Autocomplete Parameter Pluginnext of 1.1 < unspecifiedunknown

Weaknesses

ADP Enrichment

CVE Program Container

Additional References

References