Vulnerabilities > Jenkins > Mattermost > Medium

DATE CVE VULNERABILITY TITLE RISK
2019-02-20 CVE-2019-1003026 Server-Side Request Forgery (SSRF) vulnerability in Jenkins Mattermost
A server-side request forgery vulnerability exists in Jenkins Mattermost Notification Plugin 2.6.2 and earlier in MattermostNotifier.java that allows attackers with Overall/Read permission to have Jenkins connect to an attacker-specified Mattermost server and room and send a message.
network
low complexity
jenkins CWE-918
4.3