CVE-2023-41939 - How a Jenkins SSH2 Easy Plugin Flaw Could Let Old Permissions Linger
Jenkins is a popular open-source platform used by millions of developers for continuous integration and build automation. Sometimes, third-party plugins add extra features to Jenkins.
CVE-2023-41944 - Unpacking the Jenkins AWS CodeCommit Trigger Plugin HTML Injection Vulnerability
Published: Summer 2024
Severity: Medium
Affected software: Jenkins AWS CodeCommit Trigger Plugin 3..12 and earlier
Jenkins is a popular automation server used for building,
CVE-2023-41946 - How a CSRF in Jenkins Frugal Testing Plugin Lets Attackers Steal Test Data
A serious vulnerability, CVE-2023-41946, was discovered in the Jenkins Frugal Testing Plugin (versions 1.1 and below). This plugin, meant to help developers run automated
CVE-2023-41936 - How a Tiny Flaw in Jenkins Google Login Plugin Led to a Secret-Stealing Risk
Jenkins is everywhere in DevOps. From continuous integration to managing deployment pipelines, Jenkins powers a huge chunk of modern software development. But like any big
CVE-2023-41947 - Exploiting Missing Permission Checks in Jenkins Frugal Testing Plugin
In September 2023, a security vulnerability labeled CVE-2023-41947 was disclosed in the Jenkins ecosystem. The bug was found in the Frugal Testing Plugin up to
Episode
00:00:00
00:00:00