Sep 20, 2023 · Jenkins 2.424, LTS 2.414.2 excludes sensitive variables from this search. Stored XSS vulnerability. SECURITY-3245 / CVE-2023-43495. Severity ( ...

To see the ALL CLASSES link when browsing Javadoc without frames, script-src 'unsafe-inline' must also be added to the CSP header. HTML Publisher Plugin. Make ...

Mar 6, 2024 · Those reports are retained on disk, but may no longer be accessible through the Jenkins UI. Stored XSS vulnerability in HTML Publisher Plugin.

Access Control · Security Realm, which determines users and their passwords, as well as what groups the users belong to. · Authorization Strategy, which ...

This throws an exception if the user accessing this URL doesn't have Administer permission. If the administrator configured no security mechanism, the ...

Apr 12, 2023 · Lucene-Search Plugin; NeuVector Vulnerability Scanner Plugin; Quay.io trigger Plugin; Report Portal Plugin; Thycotic DevOps Secrets Vault Plugin ...

Jul 12, 2023 · mabl Plugin 0.0.47 defines the appropriate context for credentials lookup. CSRF vulnerability and missing permission checks in mabl Plugin allow ...

Jul 26, 2023 · 1 encode URLs of affected hyperlink annotations in build logs. Incorrect control flow in Gradle Plugin breaks credentials masking in the build ...

Jun 14, 2023 · 3.1 defines the appropriate context for credentials lookup. Stored XSS vulnerability in Maven Repository Server Plugin. SECURITY-3156 / CVE-2023 ...

Aug 16, 2023 · Blue Ocean Plugin 1.27.5.1 uses the configured SCM URL, instead of a user-specified URL provided as a parameter to the HTTP endpoint. CSRF ...