A cross-site request forgery vulnerability in Jenkins Static Analysis Utilities Plugin 1.95 and earlier in the DefaultGraphConfigurationView#doSave form handler method allowed attackers to change the per-job default graph configuration for all users.
| Package (Ecosystem) | Introduced | Fixed | Limit |
|---|---|---|---|
| org.jvnet.hudson.plugins:analysis-core(Maven) | 0 | 1.96 | N/A |
CVSS Metrics
