CVE-2023-37955 (test_results_aggregator)

A cross-site request forgery (CSRF) vulnerability in Jenkins Test Results Aggregator Plugin 1.2.13 and earlier allows attackers to connect to an attacker-specified URL using attacker-specified credentials.

attackers connect credentials cross-site cross-site request forgery csrf cve forgery jenkins plugin request results test test results url vulnerability