A cross-site request forgery vulnerability in Jenkins Static Analysis Utilities Plugin 1.95 and earlier in the DefaultGraphConfigurationView#doSave form handler method allowed attackers to change the per-job default graph configuration for all users.
History

No history.

cve-icon MITRE

Status: PUBLISHED

Assigner: jenkins

Published: 2019-04-30T12:25:17

Updated: 2024-08-04T22:17:20.355Z

Reserved: 2019-03-29T00:00:00

Link: CVE-2019-10307

cve-icon Vulnrichment

No data.

cve-icon NVD

Status : Modified

Published: 2019-04-30T13:29:05.157

Modified: 2024-11-21T04:18:51.513

Link: CVE-2019-10307

cve-icon Redhat

No data.