Extremely vulnerable Jenkins server on your infrastructure
Hello, While searching for unsecured servers I have found one which belongs to your organization. URL: https://217.70.190.18/ I am able to see all the logs without any authentication. Being in space flight dynamic applications, provide software development services, security services, e-commerce services this issue is very severe. I hope you take your security very seriously. Also, I am able to see your builds, build logs, console output, source code logs, on your Jenkins server. I hope you will patch the server soon and award me a good bounty for this responsible disclosure.
Many Thanks, Roottrader
To upload designs, you'll need to enable LFS and have an admin enable hashed storage. More information