Fri. Mar 31st, 2023

Global Security News

Jenkins – SECURITY-180/CVE-2015-1814 PoC

Byadmin

Mar 31, 2022

Jenkins – SECURITY-180/CVE-2015-1814 PoC

Forced API token change

SECURITY-180/CVE-2015-1814

https://jenkins.io/security/advisory/2015-03-23/#security-180cve-2015-1814-forced-api-token-change

Affected Versions

All Jenkins releases <= 1.605
All LTS releases <= 1.596.1

PoC
Tested against Jenkins 1.605

Burp output

Validate new token works

Go to Source of this post
Author Of this post:

By admin

Related Post

Global Security News

Shift Your Mindset from Conflict to Collaboration to Succeed in Security

Mar 30, 2023 admin

Global Security News

trufflehog 3.31.2 releases: Searches through git repositories for secrets, digging deep into commit history and branches

Mar 30, 2023 admin

Global Security News

Supply chain cyberattack with possible links to North Korea could have thousands of victims globally

Mar 30, 2023 admin

You missed

Trend Micro Simply Security

ICS/OT Cybersecurity 2022 TXOne Annual Report Insights

Mar 30, 2023 admin

Trend Micro Simply Security

New OpcJacker Malware Distributed via Fake VPN Malvertising

Mar 30, 2023 admin

Trend Micro Simply Security

Azure Serverless Security Risks Exposed by New Study

Mar 30, 2023 admin

Security on TechRepublic

Nexus Android malware targets 450 financial applications

Mar 30, 2023 admin