Search Blog Stats Labs

Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits

About

About Exploit Intel About Exploit Forge Privacy Policy

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Color Theme

Search Blog Statistics Labs Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits About About Exploit Forge Privacy

Exploit Database Researchers CWE Categories Vendors Ecosystems

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Follow:

Theme:

Home / Vendors / jenkins

jenkins

1,755 tracked vulnerabilities.

CVE-2023-35149 MEDIUM

Jenkins Digital.ai App Management Publisher Plugin < 2.6 - Missing Authorization

CVE-2023-35148 MEDIUM

Jenkins Digital.ai App Management Publisher < 2.6 - Cross-Site Request Forgery

CVE-2023-35147 MEDIUM

Jenkins AWS CodeCommit Trigger Plugin <= 3.0.12 - Arbitrary File Read via SQS Queue Name Path Parameter

CVE-2023-35146 MEDIUM

Jenkins Template Workflows Plugin < 41.v32d86a_313b_4a - Stored Cross-Site Scripting via Job Names

CVE-2023-35145 MEDIUM

Jenkins Sonargraph Integration Plugin < 5.0.1 - Stored Cross-Site Scripting in Log File Field Form Validation

CVE-2023-35144 MEDIUM

Jenkins Maven Repository Server Plugin < 1.10 - Stored Cross-Site Scripting in Build Artifacts Page

CVE-2023-35143 MEDIUM

Jenkins Maven Repository Server Plugin < 1.10 - Stored Cross-Site Scripting in Build Artifacts Page

CVE-2023-35142 HIGH

Jenkins Checkmarx Plugin < 2023.4.3 - Improper Certificate Validation

CVE-2023-35141 HIGH

Jenkins < 2.400 - Cross-Site Request Forgery via Context Menu URL

CVE-2023-2631 MEDIUM

Jenkins Code Dx Plugin <3.1.0 - SSRF

CVE-2023-2195 MEDIUM

Jenkins Code Dx Plugin <3.1.0 - CSRF

CVE-2023-2633 MEDIUM

Jenkins Code Dx Plugin <3.1.0 - Info Disclosure

CVE-2023-2632 MEDIUM

Jenkins Code Dx Plugin <3.1.0 - Info Disclosure

CVE-2023-2196 MEDIUM

Jenkins Code Dx Plugin <3.1.0 - Info Disclosure

CVE-2023-33007 MEDIUM

Jenkins LoadComplete support Plugin <= 1.0 - Stored Cross-Site Scripting in LoadComplete Test Name

CVE-2023-33006 MEDIUM

Jenkins WSO2 Oauth Plugin < 1.0 - Cross-Site Request Forgery

CVE-2023-33005 MEDIUM

Jenkins WSO2 Oauth Plugin < 1.0 - Insufficient Session Expiration

CVE-2023-33004 MEDIUM

Jenkins Tag Profiler Plugin < 0.2 - Unauthenticated Statistics Reset via Missing Permission Check

CVE-2023-33003 MEDIUM

Jenkins Tag Profiler Plugin < 0.2 - Cross-Site Request Forgery

CVE-2023-33002 MEDIUM

Jenkins TestComplete support Plugin < 2.8.1 - Stored Cross-Site Scripting via TestComplete Project Name

CVE-2023-33001 HIGH

Jenkins HashiCorp Vault Plugin < 360.v0a_1c04cf807d - Credential Exposure in Build Logs via Durable Task Logging

CVE-2023-33000 HIGH

Jenkins NS-ND Integration Performance Publisher Plugin <= 4.8.0.149 - Insufficiently Protected Credentials

CVE-2023-32999 MEDIUM

Jenkins AppSpider Plugin <= 1.0.15 - Missing Permission Check for HTTP POST Requests

CVE-2023-32998 HIGH

Jenkins AppSpider Plugin <= 1.0.15 - Cross-Site Request Forgery via HTTP POST Request

CVE-2023-32997 HIGH

Jenkins CAS Plugin <1.6.2 - Auth Bypass

Previous Page 12 of 71 Next

Products

jenkins 259 pipeline\ 37 script_security 33 blue_ocean 11 git 11 email_extension 10 active_directory 9 build_failure_analyzer 9 config_file_provider 9 configuration_as_code 9 ns-nd_integration_performance_publisher 8 credentials_binding 7 github_branch_source 7 html_publisher 7 kubernetes 7 openid_connect_authentication 7 openshift_deployer 7 rundeck 7 subversion 7 amazon_ec2 6 azure_ad 6 azure_vm_agents 6 deployment_dashboard 6 electricflow 6 gerrit_trigger 6 github 6 github_pull_request_builder 6 gitlab 6 google_compute_engine 6 hashicorp_vault 6

Quick Filters

Critical CVEs With Exploits In CISA KEV

Exploit Intelligence Platform

Blog Stats Labs Exploits Researchers CWE Ecosystems CLI MCP API Limits About Privacy