4 matches found
CVE-2026-53436
Jenkins 2.567 and earlier, LTS 2.555.2 and earlier improperly determines that a redirect URL after login is legitimately pointing to Jenkins when it contains relative path segments ./ or ../, allowing attackers to perform phishing attacks...
CVE-2026-53437
CVE-2026-53437 affects Jenkins 2.567 and earlier, and LTS 2.555.2 and earlier. The issue is an open redirect: the redirect URL after login is incorrectly treated as pointing to Jenkins when it contains tab or newline characters between â//â, enabling phishing attacks. The connected Nessus entry f...
EUVD-2022-6009
Malicious code in bioql PyPI...
CloudBees Jenkins Confluence Publisher Plugin Server-Side Request Forgery Vulnerability
CloudBees Jenkins is the United States CloudBees company's set of Java-based development of continuous integration tools , it is mainly used to monitor the continuous software version of the release/testing project and some of the timed execution of the task . Confluence Publisher Plugin is used ...