## https://sploitus.com/exploit?id=CNVD-2022-49802
Jenkins and Jenkins Plugin are both Jenkins open source products.Jenkins is an application. An open source automation server, Jenkins provides hundreds of plugins to support building, deploying, and automating any project.Jenkins Plugin is an application.Jenkins Storable Configs Plugin 1.0 and earlier versions are vulnerable to cross-site request forgery, which could be exploited by an attacker using an external entity to extract secrets from Jenkins controller or server-side request forgery to extract confidences.