Jenkins XPath Configuration Viewer Plugin CSRF Vulnerability

Jenkins XPath Configuration Viewer Plugin CSRF Vulnerability

CVE-2022-34812 · MEDIUM Severity

CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:N

A cross-site request forgery (CSRF) vulnerability in Jenkins XPath Configuration Viewer Plugin 1.1.1 and earlier allows attackers to create and delete XPath expressions.

Learn more about our Web Application Penetration Testing UK.