Past year
All results
- All results
- Verbatim
May 2, 2024 · Multiple sandbox bypass vulnerabilities exist in Script Security Plugin 1335.vf07d9ce377a_e and earlier: Crafted constructor bodies that invoke other ...
Jun 14, 2023 · 3.1 defines the appropriate context for credentials lookup. Stored XSS vulnerability in Maven Repository Server Plugin. SECURITY-3156 / CVE-2023-35143. Severity ...
Dec 13, 2023 · This allows attackers with Overall/Read permission to send an HTTP request to an attacker-specified URL and parse the response as XML. Additionally, the plugin ...
May 4, 2024 · Assigning roles · User groups represent authorities provided by the Security Realm (e.g. Active Directory or LDAP plugin can provide groups) · There are also two ...
Missing: /search /url
Jul 12, 2023 · 47 defines the appropriate context for credentials lookup. CSRF vulnerability and missing permission checks in mabl Plugin allow capturing credentials. SECURITY ...
Jun 24, 2023 · Administrators and privileged users modify the global configuration from the Jenkins configuration pages. Jenkins home directory. The JENKINS_HOME directory is ...
Aug 16, 2023 · Blue Ocean Plugin 1.27.5.1 uses the configured SCM URL, instead of a user-specified URL provided as a parameter to the HTTP endpoint. CSRF vulnerability and ...
Jul 26, 2023 · 1 encode URLs of affected hyperlink annotations in build logs. Incorrect control flow in Gradle Plugin breaks credentials masking in the build log. SECURITY- ...
Nov 29, 2023 · Jira Plugin 3.12 defines the appropriate context for credentials lookup. Incorrect permission checks in Google Compute Engine Plugin. SECURITY-2835 / CVE-2023- ...
5 days ago · security fix; major bug fix; bug fix; major enhancement; enhancement. Community feedback: no major issues; notable issues; required ...