Search Blog Stats Labs

Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits

About

About Exploit Intel About Exploit Forge Privacy Policy

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Color Theme

Search Blog Statistics Labs Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits About About Exploit Forge Privacy

Exploit Database Researchers CWE Categories Vendors Ecosystems

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Follow:

Theme:

Home / Vendors / jenkins

jenkins

1,755 tracked vulnerabilities.

CVE-2023-30527 MEDIUM

Jenkins WSO2 Oauth Plugin < 1.0 - Cleartext Storage of Sensitive Information in Global Config

CVE-2023-30526 MEDIUM

Jenkins Report Portal Plugin < 0.5 - Missing Authorization for URL Connection with Bearer Token

CVE-2023-30525 HIGH

Jenkins Report Portal Plugin < 0.5 - Cross-Site Request Forgery

CVE-2023-30524 MEDIUM

Jenkins Report Portal Plugin <0.5 - Info Disclosure

CVE-2023-30523 MEDIUM

Jenkins Report Portal Plugin <= 0.5 - Cleartext Storage of Sensitive Information in Job Configuration

CVE-2023-30522 MEDIUM

Jenkins Fogbugz Plugin < 2.2.17 - Missing Authorization via Jobname Parameter

CVE-2023-30521 MEDIUM

Jenkins Assembla Merge Request Builder < 1.1.13 - Unauthenticated Build Triggering

CVE-2023-30520 MEDIUM

Jenkins Quay.io trigger Plugin <= 0.1 - Stored Cross-Site Scripting via Repository Homepage URL

CVE-2023-30519 MEDIUM

Jenkins Quay.io trigger Plugin 0.1 - Unauthenticated Missing Authorization

CVE-2023-30518 MEDIUM

Jenkins Thycotic Secret Server Plugin < 1.0.2 - Missing Authorization for Credential ID Enumeration

CVE-2023-30517 MEDIUM

Jenkins NeuVector Vulnerability Scanner < 1.22 - Improper Certificate Validation

CVE-2023-30516 MEDIUM

Jenkins Image Tag Parameter Plugin < 2.0 - Improper Certificate Validation

CVE-2023-30515 HIGH

Jenkins Thycotic DevOps Secrets Vault Plugin < 1.0.0 - Cleartext Transmission of Sensitive Information in Build Log

CVE-2023-30514 HIGH

Jenkins Azure Key Vault Plugin < 187.va_cd5fecd198a - Credential Exposure in Build Log

CVE-2023-30513 HIGH

Jenkins Kubernetes Plugin < 3909.v1f2c633e8590 - Cleartext Transmission of Sensitive Information in Build Log

CVE-2023-28684 MEDIUM

Jenkins remote-jobs-view-plugin <0.0.3 - XXE

CVE-2023-28683 HIGH

Jenkins Phabricator Differential Plugin <2.1.5 - XXE

CVE-2023-28682 HIGH

Jenkins Performance Publisher Plugin <8.09 - XXE

CVE-2023-28681 HIGH

Jenkins Visual Studio Code Metrics Plugin <1.7 - XXE

CVE-2023-28680 HIGH

Jenkins Crap4J Plugin < 0.9 - XML External Entity Injection

CVE-2023-28679 MEDIUM

Jenkins Mashup Portlets Plugin <1.1.2 - XSS

CVE-2023-28678 MEDIUM

Jenkins Cppcheck Plugin <1.26 - XSS

CVE-2023-28677 CRITICAL

Jenkins Convert To Pipeline Plugin <1.0 - RCE

CVE-2023-28676 HIGH

Jenkins Convert To Pipeline Plugin <1.0 - CSRF

CVE-2023-28675 MEDIUM

Jenkins OctoPerf Load Testing Plugin <4.5.2 - Privilege Escalation

Previous Page 14 of 71 Next

Products

jenkins 259 pipeline\ 37 script_security 33 blue_ocean 11 git 11 email_extension 10 active_directory 9 build_failure_analyzer 9 config_file_provider 9 configuration_as_code 9 ns-nd_integration_performance_publisher 8 credentials_binding 7 github_branch_source 7 html_publisher 7 kubernetes 7 openid_connect_authentication 7 openshift_deployer 7 rundeck 7 subversion 7 amazon_ec2 6 azure_ad 6 azure_vm_agents 6 deployment_dashboard 6 electricflow 6 gerrit_trigger 6 github 6 github_pull_request_builder 6 gitlab 6 google_compute_engine 6 hashicorp_vault 6

Quick Filters

Critical CVEs With Exploits In CISA KEV

Exploit Intelligence Platform

Blog Stats Labs Exploits Researchers CWE Ecosystems CLI MCP API Limits About Privacy