Medium severity4.3NVD Advisory· Published Jun 5, 2018· Updated Jun 17, 2026
CVE-2018-1000185
CVE-2018-1000185
Description
A server-side request forgery vulnerability exists in Jenkins GitHub Branch Source Plugin 2.3.4 and older in Endpoint.java that allows attackers with Overall/Read access to cause Jenkins to send a GET request to a specified URL.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected packages
Versions sourced from the GitHub Security Advisory.
| Package | Affected versions | Patched versions |
|---|---|---|
org.jenkins-ci.plugins:github-branch-sourceMaven | < 2.3.5 | 2.3.5 |
Affected products
1Patches
Vulnerability mechanics
References
4News mentions
0No linked articles in our index yet.