Jenkins Job Configuration History Plugin - CVE CyberSecurity Database News

Sep 6, 2023 Exploit Jenkins Project Jenkins Job Configuration History Plugin

CVE-2023-41930 - Jenkins Job Configuration History Plugin Vulnerability Allows Attackers to Render Manipulated Configurations

Jenkins is a widely used open-source automation server that helps automate parts of the software development process. A recent vulnerability, referenced as CVE-2023-41930, has been

Sep 6, 2023 XSS Exploit Jenkins Project Jenkins Job Configuration History Plugin

CVE-2023-41931: Jenkins Job Configuration History Plugin XSS Vulnerability Affecting Versions 1227.v7a_79fc4dc01f and Earlier

The Jenkins Job Configuration History Plugin is widely used as it allows users to keep track of their job configuration changes, store the previous state

Sep 6, 2023 Jenkins Project Jenkins Job Configuration History Plugin

CVE-2023-41932: Jenkins Job Configuration History Plugin - Unrestricted Timestamp Query Parameters Could Lead to Directory Deletion

A critical security vulnerability has been discovered in Jenkins Job Configuration History Plugin version 1227.v7a_79fc4dc01f and earlier. The vulnerability, assigned the identifier CVE-2023-41932,

Sep 6, 2023 XXE Exploit Jenkins Project Jenkins Job Configuration History Plugin

CVE-2023-41933: Jenkins Job Configuration History Plugin Vulnerable to XML External Entity Attacks

Recently, a critical vulnerability has been discovered in Jenkins Job Configuration History Plugin (versions 1227.v7a_79fc4dc01f and earlier) which exposes users to XML External