Get a demo
100% Signal 0% Noise Invicti Logo - The Largest Dynamic Application Security Solutions Provider In The World Get a demo
Jenkins Cross-Site Request Forgery (CSRF) Vulnerability - CVE-2020-2160 - Vulnerability Database
Jenkins

Jenkins Cross-Site Request Forgery (CSRF) Vulnerability - CVE-2020-2160

High
Reference: CVE-2020-2160
NVD Link: https://nvd.nist.gov/vuln/detail/CVE-2020-2160
Title: Jenkins Cross-Site Request Forgery (CSRF) Vulnerability
Overview:

Jenkins 2.227 and earlier LTS 2.204.5 and earlier uses different representations of request URL paths which allows attackers to craft URLs that allow bypassing CSRF protection of any target URL.