[ { "id": 747359905, "name": "SECURITY-3314-3315", "full_name": "jenkinsci-cert\/SECURITY-3314-3315", "owner": { "login": "jenkinsci-cert", "id": 9285726, "avatar_url": "https:\/\/avatars.githubusercontent.com\/u\/9285726?v=4", "html_url": "https:\/\/github.com\/jenkinsci-cert" }, "html_url": "https:\/\/github.com\/jenkinsci-cert\/SECURITY-3314-3315", "description": "Workaround for disabling the CLI to mitigate SECURITY-3314\/CVE-2024-23897 and SECURITY-3315\/CVE-2024-23898", "fork": false, "created_at": "2024-01-23T19:19:04Z", "updated_at": "2024-01-31T02:28:40Z", "pushed_at": "2024-01-23T19:21:08Z", "stargazers_count": 5, "watchers_count": 5, "has_discussions": false, "forks_count": 0, "allow_forking": true, "is_template": false, "web_commit_signoff_required": false, "topics": [], "visibility": "public", "forks": 0, "watchers": 5, "score": 0, "subscribers_count": 4 }, { "id": 748543127, "name": "CVE-2024-23897", "full_name": "binganao\/CVE-2024-23897", "owner": { "login": "binganao", "id": 70050083, "avatar_url": "https:\/\/avatars.githubusercontent.com\/u\/70050083?v=4", "html_url": "https:\/\/github.com\/binganao" }, "html_url": "https:\/\/github.com\/binganao\/CVE-2024-23897", "description": null, "fork": false, "created_at": "2024-01-26T08:02:00Z", "updated_at": "2024-02-01T17:35:54Z", "pushed_at": "2024-02-01T06:50:32Z", "stargazers_count": 76, "watchers_count": 76, "has_discussions": false, "forks_count": 4, "allow_forking": true, "is_template": false, "web_commit_signoff_required": false, "topics": [], "visibility": "public", "forks": 4, "watchers": 76, "score": 0, "subscribers_count": 2 }, { "id": 748577478, "name": "CVE-2024-23897", "full_name": "h4x0r-dz\/CVE-2024-23897", "owner": { "login": "h4x0r-dz", "id": 26070859, "avatar_url": "https:\/\/avatars.githubusercontent.com\/u\/26070859?v=4", "html_url": "https:\/\/github.com\/h4x0r-dz" }, "html_url": "https:\/\/github.com\/h4x0r-dz\/CVE-2024-23897", "description": "CVE-2024-23897", "fork": false, "created_at": "2024-01-26T09:44:32Z", "updated_at": "2024-02-01T17:35:30Z", "pushed_at": "2024-01-28T06:47:28Z", "stargazers_count": 134, "watchers_count": 134, "has_discussions": false, "forks_count": 24, "allow_forking": true, "is_template": false, "web_commit_signoff_required": false, "topics": [], "visibility": "public", "forks": 24, "watchers": 134, "score": 0, "subscribers_count": 3 }, { "id": 748785405, "name": "CVE-2024-23897", "full_name": "xaitax\/CVE-2024-23897", "owner": { "login": "xaitax", "id": 5014849, "avatar_url": "https:\/\/avatars.githubusercontent.com\/u\/5014849?v=4", "html_url": "https:\/\/github.com\/xaitax" }, "html_url": "https:\/\/github.com\/xaitax\/CVE-2024-23897", "description": "CVE-2024-23897 | Jenkins <= 2.441 & <= LTS 2.426.2 PoC and scanner. ", "fork": false, "created_at": "2024-01-26T19:00:03Z", "updated_at": "2024-01-29T07:55:47Z", "pushed_at": "2024-01-27T10:38:25Z", "stargazers_count": 8, "watchers_count": 8, "has_discussions": false, "forks_count": 2, "allow_forking": true, "is_template": false, "web_commit_signoff_required": false, "topics": [], "visibility": "public", "forks": 2, "watchers": 8, "score": 0, "subscribers_count": 2 }, { "id": 748847022, "name": "poc-cve-2024-23897", "full_name": "vmtyan\/poc-cve-2024-23897", "owner": { "login": "vmtyan", "id": 157635595, "avatar_url": "https:\/\/avatars.githubusercontent.com\/u\/157635595?v=4", "html_url": "https:\/\/github.com\/vmtyan" }, "html_url": "https:\/\/github.com\/vmtyan\/poc-cve-2024-23897", "description": null, "fork": false, "created_at": "2024-01-26T21:39:26Z", "updated_at": "2024-01-26T21:40:59Z", "pushed_at": "2024-01-26T21:46:10Z", "stargazers_count": 0, "watchers_count": 0, "has_discussions": false, "forks_count": 0, "allow_forking": true, "is_template": false, "web_commit_signoff_required": false, "topics": [], "visibility": "public", "forks": 0, "watchers": 0, "score": 0, "subscribers_count": 1 }, { "id": 748932948, "name": "CVE-2024-23897", "full_name": "yoryio\/CVE-2024-23897", "owner": { "login": "yoryio", "id": 134471901, "avatar_url": "https:\/\/avatars.githubusercontent.com\/u\/134471901?v=4", "html_url": "https:\/\/github.com\/yoryio" }, "html_url": "https:\/\/github.com\/yoryio\/CVE-2024-23897", "description": "Scanner for CVE-2024-23897 - Jenkins", "fork": false, "created_at": "2024-01-27T04:35:20Z", "updated_at": "2024-01-28T10:21:27Z", "pushed_at": "2024-01-27T04:38:52Z", "stargazers_count": 1, "watchers_count": 1, "has_discussions": false, "forks_count": 0, "allow_forking": true, "is_template": false, "web_commit_signoff_required": false, "topics": [ "cve-2024-23897", "jenkins" ], "visibility": "public", "forks": 0, "watchers": 1, "score": 0, "subscribers_count": 1 }, { "id": 749052396, "name": "CVE-2024-23897", "full_name": "CKevens\/CVE-2024-23897", "owner": { "login": "CKevens", "id": 7390055, "avatar_url": "https:\/\/avatars.githubusercontent.com\/u\/7390055?v=4", "html_url": "https:\/\/github.com\/CKevens" }, "html_url": "https:\/\/github.com\/CKevens\/CVE-2024-23897", "description": "CVE-2024-23897 jenkins-cli", "fork": false, "created_at": "2024-01-27T12:57:28Z", "updated_at": "2024-01-29T02:02:06Z", "pushed_at": "2024-01-27T13:10:37Z", "stargazers_count": 1, "watchers_count": 1, "has_discussions": false, "forks_count": 0, "allow_forking": true, "is_template": false, "web_commit_signoff_required": false, "topics": [], "visibility": "public", "forks": 0, "watchers": 1, "score": 0, "subscribers_count": 1 }, { "id": 749060845, "name": "PoC-jenkins-rce_CVE-2024-23897", "full_name": "iota4\/PoC-jenkins-rce_CVE-2024-23897", "owner": { "login": "iota4", "id": 148342080, "avatar_url": "https:\/\/avatars.githubusercontent.com\/u\/148342080?v=4", "html_url": "https:\/\/github.com\/iota4" }, "html_url": "https:\/\/github.com\/iota4\/PoC-jenkins-rce_CVE-2024-23897", "description": "on this git you can find all information on the CVE-2024-23897", "fork": false, "created_at": "2024-01-27T13:27:57Z", "updated_at": "2024-01-28T00:56:07Z", "pushed_at": "2024-01-27T14:43:18Z", "stargazers_count": 1, "watchers_count": 1, "has_discussions": false, "forks_count": 0, "allow_forking": true, "is_template": false, "web_commit_signoff_required": false, "topics": [], "visibility": "public", "forks": 0, "watchers": 1, "score": 0, "subscribers_count": 1 }, { "id": 749172653, "name": "CVE-2024-23897", "full_name": "wjlin0\/CVE-2024-23897", "owner": { "login": "wjlin0", "id": 91306421, "avatar_url": "https:\/\/avatars.githubusercontent.com\/u\/91306421?v=4", "html_url": "https:\/\/github.com\/wjlin0" }, "html_url": "https:\/\/github.com\/wjlin0\/CVE-2024-23897", "description": "CVE-2024-23897 - Jenkins 任意文件读取 利用工具", "fork": false, "created_at": "2024-01-27T19:34:48Z", "updated_at": "2024-02-01T14:19:39Z", "pushed_at": "2024-01-28T15:02:45Z", "stargazers_count": 21, "watchers_count": 21, "has_discussions": false, "forks_count": 4, "allow_forking": true, "is_template": false, "web_commit_signoff_required": false, "topics": [ "cve", "cve-2024-23897", "jenkins" ], "visibility": "public", "forks": 4, "watchers": 21, "score": 0, "subscribers_count": 1 }, { "id": 749248494, "name": "CVE-2024-23897", "full_name": "Vozec\/CVE-2024-23897", "owner": { "login": "Vozec", "id": 61807609, "avatar_url": "https:\/\/avatars.githubusercontent.com\/u\/61807609?v=4", "html_url": "https:\/\/github.com\/Vozec" }, "html_url": "https:\/\/github.com\/Vozec\/CVE-2024-23897", "description": "This repository presents a proof-of-concept of CVE-2024-23897", "fork": false, "created_at": "2024-01-28T01:57:06Z", "updated_at": "2024-01-29T08:46:37Z", "pushed_at": "2024-01-28T02:11:59Z", "stargazers_count": 6, "watchers_count": 6, "has_discussions": false, "forks_count": 1, "allow_forking": true, "is_template": false, "web_commit_signoff_required": false, "topics": [], "visibility": "public", "forks": 1, "watchers": 6, "score": 0, "subscribers_count": 2 }, { "id": 749389006, "name": "CVE-2024-23897", "full_name": "raheel0x01\/CVE-2024-23897", "owner": { "login": "raheel0x01", "id": 65211256, "avatar_url": "https:\/\/avatars.githubusercontent.com\/u\/65211256?v=4", "html_url": "https:\/\/github.com\/raheel0x01" }, "html_url": "https:\/\/github.com\/raheel0x01\/CVE-2024-23897", "description": "Jenkins 2.441 and earlier, LTS 2.426.2 and earlier does not disable a feature of its CLI command parser that replaces an '@' character followed by a file path in an argument with the file's contents, allowing unauthenticated attackers to read arbitrary files on the Jenkins controller file system.", "fork": false, "created_at": "2024-01-28T12:53:23Z", "updated_at": "2024-01-29T18:53:19Z", "pushed_at": "2024-01-28T13:28:09Z", "stargazers_count": 1, "watchers_count": 1, "has_discussions": false, "forks_count": 0, "allow_forking": true, "is_template": false, "web_commit_signoff_required": false, "topics": [], "visibility": "public", "forks": 0, "watchers": 1, "score": 0, "subscribers_count": 1 }, { "id": 749635165, "name": "CVE-2024-23897", "full_name": "viszsec\/CVE-2024-23897", "owner": { "login": "viszsec", "id": 8476317, "avatar_url": "https:\/\/avatars.githubusercontent.com\/u\/8476317?v=4", "html_url": "https:\/\/github.com\/viszsec" }, "html_url": "https:\/\/github.com\/viszsec\/CVE-2024-23897", "description": "Jenkins POC of Arbitrary file read vulnerability through the CLI can lead to RCE", "fork": false, "created_at": "2024-01-29T04:41:53Z", "updated_at": "2024-01-30T07:22:44Z", "pushed_at": "2024-01-31T03:14:07Z", "stargazers_count": 2, "watchers_count": 2, "has_discussions": false, "forks_count": 0, "allow_forking": true, "is_template": false, "web_commit_signoff_required": false, "topics": [], "visibility": "public", "forks": 0, "watchers": 2, "score": 0, "subscribers_count": 1 }, { "id": 749788968, "name": "CVE-2024-23897", "full_name": "jopraveen\/CVE-2024-23897", "owner": { "login": "jopraveen", "id": 56404692, "avatar_url": "https:\/\/avatars.githubusercontent.com\/u\/56404692?v=4", "html_url": "https:\/\/github.com\/jopraveen" }, "html_url": "https:\/\/github.com\/jopraveen\/CVE-2024-23897", "description": null, "fork": false, "created_at": "2024-01-29T12:00:25Z", "updated_at": "2024-01-29T18:02:51Z", "pushed_at": "2024-01-29T12:14:08Z", "stargazers_count": 1, "watchers_count": 1, "has_discussions": false, "forks_count": 0, "allow_forking": true, "is_template": false, "web_commit_signoff_required": false, "topics": [], "visibility": "public", "forks": 0, "watchers": 1, "score": 0, "subscribers_count": 1 }, { "id": 751156545, "name": "Jenkins-CVE-2024-23897", "full_name": "AbraXa5\/Jenkins-CVE-2024-23897", "owner": { "login": "AbraXa5", "id": 41234094, "avatar_url": "https:\/\/avatars.githubusercontent.com\/u\/41234094?v=4", "html_url": "https:\/\/github.com\/AbraXa5" }, "html_url": "https:\/\/github.com\/AbraXa5\/Jenkins-CVE-2024-23897", "description": "PoC for CVE-2024-23897", "fork": false, "created_at": "2024-02-01T03:17:35Z", "updated_at": "2024-02-01T03:17:35Z", "pushed_at": "2024-02-01T03:17:35Z", "stargazers_count": 0, "watchers_count": 0, "has_discussions": false, "forks_count": 0, "allow_forking": true, "is_template": false, "web_commit_signoff_required": false, "topics": [], "visibility": "public", "forks": 0, "watchers": 0, "score": 0, "subscribers_count": 0 } ]