Description
A cross-site request forgery (CSRF) vulnerability in Jenkins 2.329 and earlier, LTS 2.319.1 and earlier allows attackers to trigger build of job without parameters when no security realm is set.
Remediation
References
Related Vulnerabilities
WordPress Plugin Export any WordPress data to XML/CSV Cross-Site Scripting (1.3.5)
MySQL CVE-2023-22028 Vulnerability (CVE-2023-22028)
WordPress Plugin Crafty Social Buttons Cross-Site Scripting (1.5.6)
WordPress Plugin Meta Box-WordPress Custom Fields Framework Arbitrary File Upload (4.16.1)
SugarCRM Unrestricted Upload of File with Dangerous Type Vulnerability (CVE-2023-46815)