CVE-2023-41932: Jenkins Job Configuration History Plugin - Unrestricted Timestamp Query Parameters Could Lead to Directory Deletion
A critical security vulnerability has been discovered in Jenkins Job Configuration History Plugin version 1227.v7a_79fc4dc01f and earlier. The vulnerability, assigned the identifier CVE-2023-41932,
CVE-2023-41933: Jenkins Job Configuration History Plugin Vulnerable to XML External Entity Attacks
Recently, a critical vulnerability has been discovered in Jenkins Job Configuration History Plugin (versions 1227.v7a_79fc4dc01f and earlier) which exposes users to XML External
CVE-2023-41936: Jenkins Google Login Plugin's Non-Constant Time Comparison Function Exposes Security Vulnerability
CVE-2023-41936 is a security vulnerability affecting the Jenkins Google Login Plugin version 1.7 and earlier. This vulnerability arises from using a non-constant time comparison
CVE-2023-41944: Addressing the HTML Injection Vulnerability in Jenkins AWS CodeCommit Trigger Plugin 3..12 and Earlier Versions
CVE-2023-41944 is a vulnerability discovered in the Jenkins AWS CodeCommit Trigger Plugin versions 3..12 and earlier. This security advisory addresses the HTML injection vulnerability
CVE-2023-41946: Jenkins Frugal Testing Plugin CSRF Vulnerability Leads to Unauthorized Authentication and Data Exposure
Cross-Site Request Forgery (CSRF) is a well-known web application vulnerability that enables an attacker to take unwanted actions on behalf of a victim. This can
Episode
00:00:00
00:00:00