Jenkins » Confluence Publisher : Security Vulnerabilities, CVEs,
A server-side request forgery vulnerability exists in Jenkins Confluence Publisher Plugin 2.0.1 and earlier in ConfluenceSite.java that allows attackers to have Jenkins submit login requests to an attacker-specified Confluence server URL with attacker specified credentials.
Max CVSS
4.3
EPSS Score
0.05%
Published
2018-08-01
Updated
2018-10-15
1 vulnerabilities found