Jenkins Job Configuration History Plugin - CVE CyberSecurity Database News

Sep 6, 2023 Jenkins Project Jenkins Job Configuration History Plugin

CVE-2023-41930 - Exploiting the Jenkins Job Configuration History Plugin (1227.v7a_79fc4dc01f and Earlier)

On September 2023, Jenkins revealed an important security vulnerability affecting its Job Configuration History Plugin. Identified as CVE-2023-41930, this vulnerability opens the doors for attackers

Sep 6, 2023 CSRF XSS API Java Jenkins Project Jenkins Job Configuration History Plugin

CVE-2023-41931 - Exploiting Jenkins Job Configuration History Plugin XSS Vulnerability (Detailed Walkthrough)

Jenkins is one of the most widely used open-source automation servers for continuous integration and continuous delivery (CI/CD). Plugins expand Jenkins features but sometimes

Sep 6, 2023 Exploit Jira Jenkins Project Jenkins Job Configuration History Plugin

CVE-2023-41932 - Exploiting the Jenkins Job Configuration History Plugin to Delete Arbitrary Directories

The software development world relies heavily on automation tools like Jenkins. Many teams use plugins to extend Jenkins’ features. But sometimes, a plugin exposes a

Sep 6, 2023 XXE Jenkins Project Jenkins Job Configuration History Plugin

CVE-2023-41933 - How a Jenkins Plugin Exposed Your Sensitive Data via XXE Attacks

When it comes to DevOps and continuous delivery, Jenkins is one of the most popular tools out there. Its flexibility and massive plugin ecosystem make