CVE-2018-1000014
23.01.2018, 14:29
Jenkins Translation Assistance Plugin 1.15 and earlier did not require form submissions to be submitted via POST, resulting in a CSRF vulnerability allowing attackers to override localized strings displayed to all users on the current Jenkins instance if the victim is a Jenkins administrator.
Vendor | Product | Version |
---|---|---|
jenkins | translation_assistance | 𝑥 ≤ 1.15 |
𝑥
= Vulnerable software versions
Common Weakness Enumeration