Dec 13, 2023 · The fixed version can be downloaded from the Sonatype website. CSRF vulnerability and missing permission checks in Nexus Platform Plugin allow ...

Mar 6, 2024 · Stored XSS vulnerability in iceScrum Plugin ... Description: iceScrum Plugin 1.1.6 and earlier does not sanitize iceScrum project URLs on build ...

Jul 12, 2023 · mabl Plugin 0.0.47 defines the appropriate context for credentials lookup. CSRF vulnerability and missing permission checks in mabl Plugin allow ...

Jul 26, 2023 · Jenkins 2.416, LTS 2.401.3, and LTS 2.414.1 encode URLs of affected hyperlink annotations in build logs. Incorrect control flow in Gradle Plugin ...

May 16, 2023 · Sidebar Link Plugin 2.2.1 and earlier does not restrict the path of files in a method implementing form validation. This allows attackers with ...

Nov 29, 2023 · Jira Plugin 3.12 defines the appropriate context for credentials lookup. Incorrect permission checks in Google Compute Engine Plugin. SECURITY- ...

Jenkins – an open source automation server which enables developers around the world to reliably build, test, and deploy their software.

Jan 24, 2023 · v862c6e5fb_1ef defines the appropriate context for Kubernetes credentials lookup. Session fixation vulnerability in Microsoft Entra ID ( ...

Mar 21, 2023 · Pipeline Aggregator View Plugin 1.14 obtains the current URL in a way not susceptible to XSS. CSRF vulnerability in OctoPerf Load Testing Plugin ...

Jun 22, 2022 · This results in a reflected cross-site scripting (XSS) vulnerability. Embeddable Build Status Plugin 2.0.4 limits URLs to http and https ...