Mar 9, 2020 · Crafted method calls on objects that implement GroovyInterceptable. This allows attackers able to specify and run sandboxed scripts to execute ...
This page lists all security advisories that have been published so far. This index is also available as an RSS feed. 2024. Jenkins Security Advisory 2024-05 ...
Oct 19, 2022 · ... 2020-03-09 ... URL in Jenkins when the input step is interacted with. ... This vulnerability allows attackers to connect to an attacker-specified ...
... Jenkins security advisories ... In some cases, HTTP proxies with authentication did not work for HTTPS URLs. ... Always send usage statistics over HTTPs to the new ...
... <url> <loc>https://www.jenkins.io/2.0/</loc> ... security-fix-hudson-1-365-released/</loc> ... advisory-in-jenkins-core/</loc> <lastmod>2012-03-06</lastmod> ...
A bug introduced in Jenkins 2.96 will downgrade Script Security Plugin to version 2.18.1, possibly resulting in cascading failures to load other plugins (and ...