Search Blog Stats Labs

Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits

About

About Exploit Intel About Exploit Forge Privacy Policy

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Color Theme

Search Blog Statistics Labs Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits About About Exploit Forge Privacy

Exploit Database Researchers CWE Categories Vendors Ecosystems

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Follow:

Theme:

Home / Vendors / jenkins

jenkins

1,755 tracked vulnerabilities.

CVE-2023-32996 MEDIUM

Jenkins SAML Single Sign-On Plugin < 2.0.0 - Unauthenticated Email Spoofing via miniOrange API

CVE-2023-32995 HIGH

Jenkins SAML Single Sign On Plugin < 2.0.0 - Cross-Site Request Forgery via Email API

CVE-2023-32994 LOW

Jenkins SAML Single Sign On Plugin < 2.1.0 - Improper Certificate Validation

CVE-2023-32993 MEDIUM

Jenkins SAML Single Sign On Plugin < 2.0.2 - Insufficient Verification of Data Authenticity via SAML Metadata Retrieval

CVE-2023-32992 HIGH

Jenkins SAML Single Sign On Plugin < 2.0.2 - Server-Side Request Forgery and XML External Entity Injection

CVE-2023-32991 HIGH

Jenkins SAML Single Sign On Plugin < 2.0.2 - Cross-Site Request Forgery

CVE-2023-32990 MEDIUM

Jenkins Azure VM Agents Plugin < 852.v8d35f0960a_43 - Missing Permission Check for Azure Cloud Server Connection

CVE-2023-32989 HIGH

Jenkins Azure VM Agents Plugin < 852.v8d35f0960a_43 - Cross-Site Request Forgery

CVE-2023-32988 MEDIUM

Jenkins Azure VM Agents Plugin < 852.v8d35f0960a_43 - Credential ID Enumeration via Missing Permission Check

CVE-2023-32987 HIGH

Jenkins Reverse Proxy Auth Plugin < 1.7.4 - Cross-Site Request Forgery

CVE-2023-32986 HIGH

Jenkins File Parameter Plugin < 285.287.v4b_7b_29d3469d - Arbitrary File Write via Stashed File Parameter Name

CVE-2023-32985 MEDIUM

Jenkins Sidebar Link Plugin < 2.2.1 - Path Traversal via Form Validation

CVE-2023-32984 MEDIUM

Jenkins TestNG Results Plugin < 730.v4c5283037693 - Stored Cross-Site Scripting via TestNG Report File Parsing

CVE-2023-32983 MEDIUM

Jenkins Ansible Plugin < 204.v8191fd551eb_f - Cleartext Storage of Sensitive Information in Configuration Form

CVE-2023-32982 MEDIUM

Jenkins Ansible Plugin < 204.v8191fd551eb_f - Cleartext Storage of Sensitive Information in Job config.xml

CVE-2023-32981 HIGH

Jenkins Pipeline Utility Steps < 2.15.2 - Arbitrary File Write via Crafted Archive Parameter

CVE-2023-32980 MEDIUM

Jenkins Email Extension Plugin < 2.96 - Cross-Site Request Forgery

CVE-2023-32979 MEDIUM

Jenkins Email Extension Plugin < 2.96 - Unauthenticated File Existence Disclosure via Form Validation

CVE-2023-32978 MEDIUM

Jenkins LDAP Plugin < 673.v034ec70ec2b_b - Cross-Site Request Forgery

CVE-2023-32977 MEDIUM

Jenkins Pipeline: Job Plugin < 1292.v27d8cc3e2602 - Stored Cross-Site Scripting via Build Display Name

CVE-2023-30532 MEDIUM

Jenkins TurboScript < 1.3 - Missing Authorization for Build Triggering

CVE-2023-30531 MEDIUM

Jenkins Consul KV Builder Plugin < 2.0.13 - Cleartext Storage of Sensitive Information

CVE-2023-30530 MEDIUM

Jenkins Consul KV Builder Plugin <= 2.0.13 - Cleartext Storage of Sensitive Information

CVE-2023-30529 MEDIUM

Jenkins Lucene-Search Plugin < 387.v938a_ecb_f7fe9 - Cross-Site Request Forgery

CVE-2023-30528 MEDIUM

Jenkins WSO2 Oauth Plugin <= 1.0 - Cleartext Storage of Sensitive Information in Global Configuration Form

Previous Page 13 of 71 Next

Products

jenkins 259 pipeline\ 37 script_security 33 blue_ocean 11 git 11 email_extension 10 active_directory 9 build_failure_analyzer 9 config_file_provider 9 configuration_as_code 9 ns-nd_integration_performance_publisher 8 credentials_binding 7 github_branch_source 7 html_publisher 7 kubernetes 7 openid_connect_authentication 7 openshift_deployer 7 rundeck 7 subversion 7 amazon_ec2 6 azure_ad 6 azure_vm_agents 6 deployment_dashboard 6 electricflow 6 gerrit_trigger 6 github 6 github_pull_request_builder 6 gitlab 6 google_compute_engine 6 hashicorp_vault 6

Quick Filters

Critical CVEs With Exploits In CISA KEV

Exploit Intelligence Platform

Blog Stats Labs Exploits Researchers CWE Ecosystems CLI MCP API Limits About Privacy