×
AllVideosBooksNews Images Maps Shopping
Search tools

Jenkins Security

www.jenkins.io › security
The Jenkins project takes security seriously. We make every possible effort to ensure users can adequately secure their automation infrastructure.
Security Advisories · About the Jenkins Security Team · Securing Jenkins
Missing: /url | Show results with:/url

Security Advisories - Jenkins

www.jenkins.io › security › advisories
This page lists all security advisories that have been published so far. This index is also available as an RSS feed. 2024. Jenkins Security Advisory 2024-05 ...

Reporting Security Vulnerabilities - Jenkins

www.jenkins.io › security › reporting
We still recommend reporting such vulnerabilities in private so that they can be reviewed by the security team, in case the vulnerable code is also used for ...

Jenkins Security Advisory 2024-01-24

www.jenkins.io › security › advisory
Jan 24, 2024 · This advisory announces vulnerabilities in the following Jenkins deliverables: Jenkins (core); Git server Plugin · GitLab Branch Source ...

Jenkins Security Advisory 2023-07-12

www.jenkins.io › security › advisory
Jul 12, 2023 · This allows attackers with Overall/Read permission to connect to an attacker-specified URL using attacker-specified credentials IDs obtained ...

Jenkins Security Advisory 2023-10-25

www.jenkins.io › security › advisory
Oct 25, 2023 · This results in a stored cross-site scripting (XSS) vulnerability exploitable by attackers with Item/Configure permission. GitHub Plugin 1.37.

Jenkins Security Advisory 2023-06-14

www.jenkins.io › security › advisory
Jun 14, 2023 · As of publication of this advisory, we are aware of insufficiently escaped context menu URLs for label expressions, allowing attackers with Item ...

Jenkins Security Advisory 2023-03-08

www.jenkins.io › security › advisory
Mar 8, 2023 · This advisory announces vulnerabilities in the following Jenkins deliverables: Jenkins (core); update-center2. Descriptions. XSS vulnerability ...

Jenkins Security Advisory 2024-03-06

www.jenkins.io › security › advisory
Mar 6, 2024 · This results in a stored cross-site scripting (XSS) vulnerability exploitable by attackers able to control workspace contents or CVE metadata.

Jenkins Security Advisory 2023-04-12

www.jenkins.io › security › advisory
Apr 12, 2023 · Quay.io trigger Plugin 0.1 and earlier does not limit URL schemes for repository homepage URLs submitted via Quay.io trigger webhooks. This ...