VYPR
Moderate severityNVD Advisory· Published Oct 29, 2025· Updated Nov 4, 2025

CVE-2025-64133

CVE-2025-64133

Description

A cross-site request forgery (CSRF) vulnerability in Jenkins Extensible Choice Parameter Plugin 239.v5f5c278708cf and earlier allows attackers to execute sandboxed Groovy code.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected packages

Versions sourced from the GitHub Security Advisory.

PackageAffected versionsPatched versions
jp.ikedam.jenkins.plugins:extensible-choice-parameterMaven
<= 239.v5f5c278708cf

Affected products

2

Patches

Vulnerability mechanics

References

4

News mentions

1
CVE-2025-64133 · moderate · VYPR