CVE-2023-40349 Information
Aug 18, 2023
cve
Description
Jenkins Gogs Plugin 1.0.15 and earlier improperly initializes an option to secure its webhook endpoint allowing unauthenticated attackers to trigger builds of jobs.
Reference
https://www.jenkins.io/security/advisory/2023-08-16/#SECURITY-2894 http://www.openwall.com/lists/oss-security/2023/08/16/3
Share on: