-
CVSS Score
-Basic Information
CVE ID
-
GHSA ID
-
EPSS Score
-
CWE
-
Published
-
Updated
-
KEV Status
-
Technology
-
Technical Details
Vulnerability Intelligence
Miggo AI
Miggo AIMiggo AI| Package Name | Ecosystem | Vulnerable Versions | First Patched Version |
|---|---|---|---|
| org.jenkins-ci.plugins:build-with-parameters | maven | <= 1.5 | 1.5.1 |
JavaJavaMiggo AIRoot Cause AnalysisThe commit diff shows the vulnerable function was modified by adding @RequirePOST annotation to enforce POST requests. Prior to this fix, the endpoint accepted non-POST requests, enabling CSRF attacks. The method's role in handling build parameter submissions makes it the clear attack vector.
Ongoing coverage of React2Shell