Uploaded image for project: 'Jenkins'
  1. Jenkins
  2. JENKINS-30255

Publicly disclosed security issue on Jenkins suggested to affect latest version

XMLWordPrintable

    • Icon: Bug Bug
    • Resolution: Duplicate
    • Icon: Major Major
    • groovy-plugin
    • version 1.626

      A public disclosure for a CSRF issue that can lead to arbitrary command execution through Groovy is posted at:

      http://seclists.org/bugtraq/2015/Aug/161

      Wondering if this has been triaged, being investigated. My searches on JIRA didn't return anything, creating this report to track this just to be on safe side.

      My apologies if this bug doesn't fully follow your guidelines.

            vjuranek vjuranek
            alip intan alip
            Votes:
            0 Vote for this issue
            Watchers:
            2 Start watching this issue

              Created:
              Updated:
              Resolved: