Jenkins Gatling Plugin Vulnerability Let Attackers Bypass Content-Security-Policy Protection

2025-06-09 13:06

A critical cross-site scripting (XSS) vulnerability in the popular Jenkins Gatling Plugin allows attackers to bypass Content-Security-Policy (CSP) protections. The vulnerability, tracked as CVE-2025-5806, affects Gatling Plugin version 136.vb_9009b_3d33a_e and poses significant risks to Jenkins environments utilizing this performance testing integration tool. The vulnerability stems from how Gatling Plugin 136.vb_9009b_3d33a_e serves Gatling performance testing reports […]

The post Jenkins Gatling Plugin Vulnerability Let Attackers Bypass Content-Security-Policy Protection appeared first on Cyber Security News.

This article has been indexed from Cyber Security News

Read the original article:

Jenkins Gatling Plugin Vulnerability Let Attackers Bypass Content-Security-Policy Protection

← iMessage Zero-Click Attacks Suspected in Targeting of High-Value EU, US Individuals

Forensic Analysis in Cybersecurity – Tools and Techniques for Incident Response →


10.4K	8K	100+	500+

Read the original article:

Related

Post navigation