CVE-2026-48925

Name of the Vulnerable Software and Affected Versions Jenkins GitHub Integration Plugin versions prior to 0.7.4

Description A cross-site request forgery (CSRF) flaw allows attackers to trigger a build for a pull request. CSRF is a type of attack that tricks a victim into submitting a malicious request to a web application where they are currently authenticated.

Recommendations Update to a version later than 0.7.3.