Jenkins Vulnerable to Cross-Site Request Forgery (CSRF) Attack

GHSA-w7qm-fprw-cqgq · CVE-2015-7538

Published May 13, 2022 · Modified Mar 13, 2025

Description

Jenkins before 1.640 and LTS before 1.625.2 allow remote attackers to bypass the CSRF protection mechanism via unspecified vectors.

Ready to move

Free, no credit card | First findings in minutes