CVE-2023-41946 - How a CSRF in Jenkins Frugal Testing Plugin Lets Attackers Steal Test Data
A serious vulnerability, CVE-2023-41946, was discovered in the Jenkins Frugal Testing Plugin (versions 1.1 and below). This plugin, meant to help developers
CVE-2023-41942 - How a CSRF Flaw in Jenkins AWS CodeCommit Trigger Plugin Lets Attackers Clear SQS Queues
Jenkins is widely used for automation, and the AWS CodeCommit Trigger Plugin adds the ability to hook up AWS CodeCommit events with Jenkins jobs. But,
CVE-2023-41938 - How a CSRF Vulnerability Could Let Attackers Delete Your Disabled Jenkins Ivy Modules
If you are using Jenkins to automate builds and deployments, you may have heard about its huge plugin ecosystem. One of the popular plugins is
CVE-2023-39515 - How Stored XSS in Cacti’s data_debug.php Threatens Your NMS
Cacti is a popular open source monitoring and fault management framework, widely used for keeping an eye on IT infrastructure. In 2023, a critical security
CVE-2023-4209 - How Missing CSRF Protection in POEditor Plugin for WordPress Exposes Your Website
The security of WordPress plugins is crucial to every website owner. This long read breaks down CVE-2023-4209 in the POEditor WordPress plugin, affects
Episode
00:00:00
00:00:00