CVE-2023-40341 - Exploiting CSRF in Jenkins Blue Ocean Plugin to Steal GitHub Credentials
In late 2023, a serious security flaw was found in the popular Blue Ocean plugin for Jenkins. Labeled CVE-2023-40341, this vulnerability allows external attackers to
CVE-2023-40345 - How a Jenkins Delphix Plugin Bug Let Attackers Snatch Your Credentials
If you use Jenkins for building and deploying your code, you probably rely on plugins to connect with various tools. But what if a plugin
CVE-2023-40337 - Exploiting CSRF in Jenkins Folders Plugin to Copy Views Inside Folders
Jenkins is one of the world's most popular automation servers. It's used everywhere from tiny hobby projects to the biggest companies.
CVE-2023-40350 - Jenkins Docker Swarm Plugin XSS Vulnerability Explained
In August 2023, a critical security flaw (CVE-2023-40350) was discovered in the Jenkins Docker Swarm Plugin. If you use Jenkins with Docker Swarm and haven’
CVE-2023-40336 - How a Simple CSRF Bug in Jenkins Folders Plugin Lets Attackers Copy Your Folders
On August 23, 2023, a new vulnerability was disclosed affecting Jenkins, the popular open-source automation server. Registered as CVE-2023-40336, this security flaw exists in the
Episode
00:00:00
00:00:00