A cross-site request forgery (CSRF) vulnerability in Jenkins Test Results Aggregator Plugin 1.2.13 and earlier allows attackers to connect to an attacker-specified URL using attacker-specified credentials.

Jenkins Test Results Aggregator Plugin vulnerable to Cross Site Request Forgery