CVE-2020-2281
A cross-site request forgery (CSRF) vulnerability in Jenkins Lockable Resources Plugin 2.8 and earlier allows attackers to reserve, unreserve, unlock, and reset resources.
Date published : 2020-09-23
https://www.jenkins.io/security/advisory/2020-09-23/#SECURITY-1958