CVE-2023-41938 - How a CSRF Vulnerability Could Let Attackers Delete Your Disabled Jenkins Ivy Modules
If you are using Jenkins to automate builds and deployments, you may have heard about its huge plugin ecosystem. One of the popular plugins is
CVE-2023-41946 - How a CSRF in Jenkins Frugal Testing Plugin Lets Attackers Steal Test Data
A serious vulnerability, CVE-2023-41946, was discovered in the Jenkins Frugal Testing Plugin (versions 1.1 and below). This plugin, meant to help developers run automated
CVE-2023-41944 - Unpacking the Jenkins AWS CodeCommit Trigger Plugin HTML Injection Vulnerability
Published: Summer 2024
Severity: Medium
Affected software: Jenkins AWS CodeCommit Trigger Plugin 3..12 and earlier
Jenkins is a popular automation server used for building,
CVE-2023-39515 - How Stored XSS in Cacti’s data_debug.php Threatens Your NMS
Cacti is a popular open source monitoring and fault management framework, widely used for keeping an eye on IT infrastructure. In 2023, a critical security
CVE-2023-4209 - How Missing CSRF Protection in POEditor Plugin for WordPress Exposes Your Website
The security of WordPress plugins is crucial to every website owner. This long read breaks down CVE-2023-4209 in the POEditor WordPress plugin, affects versions before
Episode
00:00:00
00:00:00