High severity8.0NVD Advisory· Published Mar 27, 2018· Updated Jun 17, 2026
CVE-2018-8718
CVE-2018-8718
Description
Cross-site request forgery (CSRF) vulnerability in the Mailer Plugin 1.20 for Jenkins 2.111 allows remote authenticated users to send unauthorized mail as an arbitrary user via a /descriptorByName/hudson.tasks.Mailer/sendTestMail request.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected packages
Versions sourced from the GitHub Security Advisory.
| Package | Affected versions | Patched versions |
|---|---|---|
org.jenkins-ci.plugins:mailerMaven | < 1.21 | 1.21 |
Affected products
1Patches
Vulnerability mechanics
References
9- www.exploit-db.com/exploits/44843/nvdExploitThird Party AdvisoryVDB Entry
- www.openwall.com/lists/oss-security/2018/03/26/3nvdMailing ListThird Party AdvisoryWEB
- www.securityfocus.com/bid/103691nvdThird Party AdvisoryVDB EntryWEB
- github.com/advisories/GHSA-6g57-h38c-q52gghsaADVISORY
- jenkins.io/security/advisory/2018-03-26/nvdVendor Advisory
- nvd.nist.gov/vuln/detail/CVE-2018-8718ghsaADVISORY
- github.com/jenkinsci/mailer-plugin/commit/98e79cf904769907f83894e29f50ed6b3e7eb135ghsaWEB
- jenkins.io/security/advisory/2018-03-26ghsaWEB
- www.exploit-db.com/exploits/44843ghsaWEB
News mentions
0No linked articles in our index yet.