CVE-2023-41946

Name of the Vulnerable Software and Affected Versions Jenkins Frugal Testing Plugin versions 1.1 and earlier

Description A cross-site request forgery (CSRF) vulnerability allows attackers to connect to Frugal Testing using attacker-specified credentials, and to retrieve test IDs and names from Frugal Testing, if a valid credential corresponds to the attacker-specified username.

Recommendations For Jenkins Frugal Testing Plugin versions 1.1 and earlier, update to a version that fixes this issue. At the moment, there is no information about a newer version that contains a fix for this vulnerability.