No one has any ideas about this at all?
On Friday, April 13, 2018 at 12:21:36 PM UTC-6, Eric Fetzer wrote: > > We're getting gigged on a security scan that looking at Jenkins > documentation, should not be happening. The scan is turning up: > > > *Vulnerability* > > *Host* > > *IP* > > *Port* > > *201701* > > *201702* > > *201703* > > *201704* > > *201705* > > *201706* > > *201707* > > Jenkins JDK / Ant Tools Job Configuration Stored XSS Vulnerability > (SECURITY-624) > <redacted> > > <redacted> > > TCP:8080 > > NO > > NO > > NO > > NO > > NO > > NO > > NO > > > In the documentation, I see 2 places where this could be turning up. Ant > plugin prior to 1.8, and Jenkins version prior to 2.93. Our Jenkins > version is 2.107.1 and we just upgraded our Ant plugin to 1.8. Anyone have > an idea what's getting us here? > > Thanks, > Eric > -- You received this message because you are subscribed to the Google Groups "Jenkins Users" group. To unsubscribe from this group and stop receiving emails from it, send an email to [email protected]. To view this discussion on the web visit https://groups.google.com/d/msgid/jenkinsci-users/58bf582a-a106-4f95-966a-07642c16e11c%40googlegroups.com. For more options, visit https://groups.google.com/d/optout.
