Description
Session fixation vulnerability in Jenkins before 1.551 and LTS before 1.532.2 allows remote attackers to hijack web sessions via vectors involving the "override" of Jenkins cookies.
Remediation
References
Related Vulnerabilities
IBM WebSEAL Inadequate Encryption Strength Vulnerability (CVE-2018-1814)
WordPress Plugin PictoBrowser Cross-Site Request Forgery (0.3.1)
WordPress Plugin S3Bubble Cloud Video With Adverts & Analytics Arbitrary File Download (0.7)
OpenSSL Uncontrolled Recursion Vulnerability (CVE-2018-0739)
WordPress Plugin Gallery for Social Photo Cross-Site Request Forgery (1.0.0.27)