site:jenkins.io /url https://www.jenkins.io/security/advisories/

AllNews Videos Books Images Maps Shopping

Security Advisories - Jenkins

This page lists all security advisories that have been published so far. This index is also available as an RSS feed. 2024. Jenkins Security Advisory 2024-05 ...

Jenkins Security Advisory... · CVE-2024-23897 · Stored XSS vulnerability

Jenkins Security Advisory 2024-01-24

www.jenkins.io › security › advisory

Jan 24, 2024 · This advisory announces vulnerabilities in the following Jenkins deliverables: Jenkins (core); Git server Plugin · GitLab Branch Source ...

Jenkins Security

www.jenkins.io › security

Security advisories are the primary way to publicly inform Jenkins users about security issues in Jenkins and Jenkins plugins. You can find all past security ...

Security Advisories · About the Jenkins Security Team · Securing Jenkins

Missing: /url | Show results with:/url

Jenkins Security Advisory 2023-10-25

www.jenkins.io › security › advisory

Oct 25, 2023 · This results in a stored cross-site scripting (XSS) vulnerability exploitable by attackers with Item/Configure permission. GitHub Plugin 1.37.

Jenkins Security Advisory 2023-03-08

www.jenkins.io › security › advisory

Mar 8, 2023 · This advisory announces vulnerabilities in the following Jenkins deliverables: Jenkins (core); update-center2. Descriptions. XSS vulnerability ...

Jenkins Security Advisory 2023-06-14

www.jenkins.io › security › advisory

Jun 14, 2023 · This allows attackers with Overall/Read permission to connect to an attacker-specified URL using attacker-specified credentials IDs obtained ...

Jenkins Security Advisory 2023-07-26

www.jenkins.io › security › advisory

Jul 26, 2023 · This results in a stored cross-site scripting (XSS) vulnerability exploitable by attackers able to control build log contents. Jenkins 2.416, ...

Jenkins Security Advisory 2023-09-20

www.jenkins.io › security › advisory

Sep 20, 2023 · Description: Jenkins creates a temporary file when a plugin is deployed directly from a URL. Jenkins 2.423 and earlier, LTS 2.414.1 and ...

Jenkins Security Advisory 2024-05-02

www.jenkins.io › security › advisory

May 2, 2024 · Description: Script Security Plugin provides a sandbox feature that allows low privileged users to define scripts, including Pipelines, that are ...

Jenkins Security Advisory 2023-07-12

www.jenkins.io › security › advisory

Jul 12, 2023 · This allows attackers with Overall/Read permission to connect to an attacker-specified URL using attacker-specified credentials IDs obtained ...