Description
Jenkins GitHub Authentication Plugin 0.31 and earlier did not use the state parameter of OAuth to prevent CSRF.
No analysis available yet.
Remediation
No remediation available yet.
Tracking
Sign in to view the affected projects.
Advisories
| Source | ID | Title |
|---|---|---|
EUVD |
EUVD-2022-4779 | Jenkins GitHub Authentication Plugin 0.31 and earlier did not use the state parameter of OAuth to prevent CSRF. |
Github GHSA |
GHSA-phwv-crgp-9r69 | Jenkins GitHub Authentication Plugin Cross-Site Request Forgery vulnerability |
References
History
No history.
Status: PUBLISHED
Assigner: jenkins
Published:
Updated: 2024-08-04T22:17:20.358Z
Reserved: 2019-03-29T00:00:00.000Z
Link: CVE-2019-10315
No data.
Status : Modified
Published: 2019-04-30T13:29:05.813
Modified: 2026-06-17T02:10:42.023
Link: CVE-2019-10315
No data.
OpenCVE Enrichment
No data.
Weaknesses
-
CWE-352
Cross-Site Request Forgery (CSRF)
EUVD
Github GHSA