The webhook endpoint in Jenkins Gogs Plugin 1.0.15 and previous versions provides unauthenticated attackers information about the existence of jobs in its output.
jenkins gogs