Jenkins Mailer Plugin Cross-Site Request Forgery Vulnerability

Jenkins is a Jenkins open source application. An open source automation server, Jenkins provides hundreds of plug-ins to support building, deploying, and automating any project.A cross-site request forgery vulnerability exists in Jenkins Mailer, which stems from the software’s lack of validation of cross-site request forgery tokens, and could be exploited by an attacker to resolve an attacker-specified hostname.