Security News

Vulnerabilities Found in Over 100 Jenkins Plugins
2019-05-03 13:36

A researcher has discovered vulnerabilities in more than 100 plugins designed for the Jenkins open source software development automation server and many of them have yet to be patched. read more

XebiaLabs extends Jenkins for all DevOps teams and tools
2018-09-19 02:15

Adding to XebiaLabs’ enterprise DevOps platform for Release Orchestration, Deployment Automation, and DevOps Intelligence, the XebiaLabs DevOps Pack for Jenkins provides everything enterprise...

Misconfigured Jenkins Servers Leak Sensitive Data
2018-01-19 16:20

A researcher has conducted an analysis of Jenkins servers and found that many of them leak sensitive information, including ones belonging to high-profile companies. London-based researcher Mikail...

Snapchat Pays $20,000 for Vulnerable Jenkins Instances (Security Week)
2017-08-24 12:22

Snapchat has awarded researchers a total of $20,000 for finding exposed Jenkins instances that allowed arbitrary code execution and provided access to sensitive data. read more

Critical Flaw Patched in Jenkins Automation Server (SecurityWeek)
2017-05-08 13:48

Securing Jenkins CI Systems (SANS Reading Room)
2016-04-08 16:16

Week of Continuous Intrusion - Day 1 - Jenkins (Reddit)
2015-11-30 14:37

Jenkins plugs 11 security holes with two updates (The Register)
2015-11-12 17:05

RCE and Password Recovery is quot;Rejectedquot; as a Vulnerability by Jenkins (Reddit)
2015-11-11 17:20

What Do WebLogic, WebSphere, JBoss, Jenkins, OpenNMS, and Your Application Have in Common? This Vulnerability. (Reddit)
2015-11-06 15:24