GHSA-997j-37h7-mhg9
GitHub Security Advisory
CSRF vulnerability in Jenkins AWS CodeCommit Trigger Plugin
✓ GitHub Reviewed
MODERATE
Has CVE
Advisory Details
A cross-site request forgery (CSRF) vulnerability in Jenkins AWS CodeCommit Trigger Plugin 3.0.12 and earlier allows attackers to clear the SQS queue.
Affected Packages
Maven
org.jenkins-ci.plugins:aws-codecommit-trigger
Affected versions:
0
(last affected: 3.0.12)
Related CVEs
Key Information
5.0
/10
Dataset
Last updated: August 24, 2025 6:28 AM
Data from GitHub Advisory Database. This information is provided for research and educational purposes.