CVE-2019-1003020
EUVD-2022-192906.02.2019, 16:29
A server-side request forgery vulnerability exists in Jenkins Kanboard Plugin 1.5.10 and earlier in KanboardGlobalConfiguration.java that allows attackers with Overall/Read permission to submit a GET request to an attacker-specified URL.
Affected Products (NVD)
| Vendor | Product | Version |
|---|---|---|
| jenkins | kanboard | 𝑥 ≤ 1.5.10 |
𝑥
= Vulnerable software versions