Google
×
Nov 11, 2015 · Remote code execution vulnerability due to unsafe deserialization in Jenkins remoting ... Unsafe deserialization allows unauthenticated remote ...
Jenkins Security Advisory 2021-11-12. Affects Plugins: Active Choices OWASP Dependency-Check Performance pom2config Scriptler Squash TM Publisher ...
Nov 12, 2021 · This advisory announces vulnerabilities in the following Jenkins deliverables: Active Choices Plugin. OWASP Dependency-Check Plugin.
Nov 15, 2022 · This vulnerability allows attackers able to configure Pipelines to execute arbitrary code in the context of the Jenkins controller JVM. Pipeline ...
Nov 29, 2023 · Enumerate system-scoped credentials IDs of credentials stored in Jenkins. Those can be used as part of an attack to capture the credentials ...
May 11, 2021 · This vulnerability allows attackers to connect to an attacker-specified URL using attacker-specified credentials IDs obtained through another ...
Nov 4, 2021 · This advisory announces vulnerabilities in the following Jenkins deliverables: Jenkins (core) Subversion Plugin.
Jan 12, 2022 · This results in a path traversal vulnerability allowing attackers with Item/Configure permission to discover the name of the Jenkins controller ...
Oct 11, 2017 · This plugin allows users with Job/Configure permission to run arbitrary Groovy code inside the Jenkins JVM, effectively elevating privileges to ...
Jul 11, 2019 · Stored XSS vulnerability in Dependency Graph Viewer Plugin ... Description: Dependency Graph Viewer Plugin does not correctly escape the Display ...