Login   Register
Upgrade your account to access Premium section
Access to DarkForums Private Archive Telegram Channel
Old Telegram is Banned Join our new Telegram Channel

Thread Rating:
  • 0 Vote(s) - 0 Average
  • 1
  • 2
  • 3
  • 4
  • 5
2107 DOCUMENTS Jenkins (CVE-2024-23897)

Original Poster
n3od4y
11
REP
0
LIKES

DarkForums Members
Members
Joined: Aug 2024
Threads: 7
Posts: 9
Credits: 7.90 [+]
7 Months


STAFF TEAM
#1
07-08-24, 10:50 AM (This post was last modified: 07-08-24, 07:29 PM by @Lucifer.)
As a red teamer, you encountered a Jenkins instance that is vulnerable to CVE-2024-23897, which allowed for limited arbitrary file read. Without credentials and with the /script endpoint inaccessible, you sought to leverage this vulnerability by revealing Hudson to decypt the credentials.

Hidden Content
You must register or login to view this content.
[-] The following 1 user Likes n3od4y's post:
  • modoff

modoff
0
REP
0
LIKES

DarkForums Members
Members
Joined: Aug 2024
Threads: 0
Posts: 1
Credits: 0.00 [+]
6 Months


STAFF TEAM
#2
31-08-24, 05:47 AM
okansjdsad
Reply

alexanderdavid
0
REP
0
LIKES

DarkForums Members
Members
Joined: Aug 2024
Threads: 0
Posts: 1
Credits: 0.00 [+]
6 Months


STAFF TEAM
#3
31-08-24, 07:10 PM
uhmmm is real?
Reply

runninwolf83
6
REP
0
LIKES

DarkForums Members
Members
Joined: Jul 2023
Threads: 0
Posts: 37
Credits: 10.00 [+]
1 Year

VIP

STAFF TEAM
#4
10-02-25, 03:12 AM
Lets see
Reply

Reply to this thread




Extras

Changelog

Awards

Credits

BanLists

Canary

Account

Control Panel

Upgrade

2 Factor Authentication

Useful Links

Rules & Guidelines

Advertising

Team

Contact Us

ABOUT US

DarkForums is a discussion forum about gaming, technology and various other interesting topics with lots of exclusive leaks.
If you would like to contact the staff team, please send one of our staff members a message or Contact Us .