Description
A cross-site request forgery vulnerability in Jenkins Artifactory Plugin 3.2.2 and earlier in ReleaseAction#doSubmit, GradleReleaseApiAction#doStaging, MavenReleaseApiAction#doStaging, and UnifiedPromoteBuildAction#doSubmit allowed attackers to schedule a release build, perform release staging for Gradle and Maven projects, and promote previously staged builds, respectively.
Remediation
References
Related Vulnerabilities
WordPress Plugin vSlider Multi Image Slider for WordPress Multiple Vulnerabilities (4.1.2)
phpBB Cross-Site Request Forgery (CSRF) Vulnerability (CVE-2019-13376)
MySQL CVE-2021-2479 Vulnerability (CVE-2021-2479)
WordPress Plugin iThemes Security (formerly Better WP Security) Cross-Site Scripting (5.6.1)