CVE-2023-30522

Publication date

2023-04-12 17:05:12

Family

jenkins

State

PUBLISHED

Description

A missing permission check in Jenkins Fogbugz Plugin 2.2.17 and earlier allows attackers with Item/Read permission to trigger builds of jobs specified in a jobname request parameter.