Multiple Jenkins Plugins Multiple Input Validation Security Vulnerabilities

Multiple Jenkins plugins are prone to the following vulnerabilities:

1. Multiple cross-site request forgery vulnerabilities
2. Multiple information disclosure vulnerabilities

An attacker may leverage these issues to execute arbitrary script code in the browser of the victim in the context of the affected site, steal cookie-based authentication credentials, gain access to sensitive information. This may aid in further attacks.


 

Privacy Statement
Copyright 2010, SecurityFocus