CVE-2023-41946
06.09.2023, 13:15
A cross-site request forgery (CSRF) vulnerability in Jenkins Frugal Testing Plugin 1.1 and earlier allows attackers to connect to Frugal Testing using attacker-specified credentials, and to retrieve test IDs and names from Frugal Testing, if a valid credential corresponds to the attacker-specified username.
| Vendor | Product | Version |
|---|---|---|
| jenkins | frugal_testing | 𝑥 ≤ 1.1 |
𝑥
= Vulnerable software versions
Common Weakness Enumeration