CVE-2021-21629

2021-03-3012:16:10

Google

osv.dev

6.7 Medium

AI Score

Confidence

High

0.001 Low

EPSS

Percentile

33.3%

JSON

A cross-site request forgery (CSRF) vulnerability in Jenkins Build With Parameters Plugin 1.5 and earlier allows attackers to build a project with attacker-specified parameters.

CPENameOperatorVersion
build-with-parameters-plugineqbuild-with-parameters-1.1
build-with-parameters-plugineqbuild-with-parameters-1.2
build-with-parameters-plugineqbuild-with-parameters-1.3
build-with-parameters-plugineqbuild-with-parameters-1.4
build-with-parameters-plugineqbuild-with-parameters-1.5

Name	Operator	Version
build-with-parameters-plugin	eq	build-with-parameters-1.1
build-with-parameters-plugin	eq	build-with-parameters-1.2
build-with-parameters-plugin	eq	build-with-parameters-1.3
build-with-parameters-plugin	eq	build-with-parameters-1.4
build-with-parameters-plugin	eq	build-with-parameters-1.5