CVE-2023-4302 - How a Missing Permission Check in Jenkins Fortify Plugin Exposes Your Credentials
Jenkins is a widely used automation server in software development. It manages building, testing, and deployment tasks with the help of plugins. But even the
CVE-2023-40344 - How a Simple Permission Check Failure in Jenkins Delphix Plugin Exposes Credential IDs
In the fast-moving world of DevOps, Jenkins plugins play a big role in extending core functionality. But sometimes, even a small oversight in plugin code
CVE-2023-40337 - Exploiting CSRF in Jenkins Folders Plugin to Copy Views Inside Folders
Jenkins is one of the world's most popular automation servers. It's used everywhere from tiny hobby projects to the biggest companies.
CVE-2023-40341 - Exploiting CSRF in Jenkins Blue Ocean Plugin to Steal GitHub Credentials
In late 2023, a serious security flaw was found in the popular Blue Ocean plugin for Jenkins. Labeled CVE-2023-40341, this vulnerability allows external attackers to
CVE-2023-40345 - How a Jenkins Delphix Plugin Bug Let Attackers Snatch Your Credentials
If you use Jenkins for building and deploying your code, you probably rely on plugins to connect with various tools. But what if a plugin
Episode
00:00:00
00:00:00