Search Blog Stats Labs

Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits

About

About Exploit Intel About Exploit Forge Privacy Policy

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Color Theme

Search Blog Statistics Labs Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits About About Exploit Forge Privacy

Exploit Database Researchers CWE Categories Vendors Ecosystems

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Follow:

Theme:

Home / Vendors / jenkins

jenkins

1,755 tracked vulnerabilities.

CVE-2022-28149 MEDIUM

Jenkins Job and Node Ownership Plugin < 0.13.0 - Stored Cross-Site Scripting in Secondary Owner Names

CVE-2022-28148 MEDIUM

Jenkins Continuous Integration with Toad Edge Plugin < 2.3 - Path Traversal via File Browser

CVE-2022-28147 MEDIUM

Jenkins Continuous Integration with Toad Edge Plugin < 2.3 - Missing Authorization for File Path Existence Check

CVE-2022-28146 MEDIUM

Jenkins Continuous Integration with Toad Edge Plugin < 2.3 - Arbitrary File Read via Input Folder Parameter

CVE-2022-28145 MEDIUM

Jenkins Continuous Integration with Toad Edge Plugin < 2.3 - Stored Cross-Site Scripting via Report Files

CVE-2022-28144 MEDIUM

Jenkins Proxmox Plugin < 0.7.0 - Missing Authorization in HTTP Endpoints

CVE-2022-28143 MEDIUM

Jenkins Proxmox Plugin < 0.7.0 - Cross-Site Request Forgery

CVE-2022-28142 HIGH

Jenkins Proxmox Plugin < 0.6.0 - SSL/TLS Certificate Validation Disabled

CVE-2022-28141 MEDIUM

Jenkins Proxmox Plugin < 0.5.0 - Insufficiently Protected Credentials

CVE-2022-28140 HIGH

Jenkins Flaky Test Handler Plugin < 1.2.1 - XML External Entity Injection

CVE-2022-28139 MEDIUM

Jenkins RocketChat Notifier Plugin < 1.4.0 - Missing Authorization

CVE-2022-28138 MEDIUM

Jenkins RocketChat Notifier Plugin < 1.4.10 - Cross-Site Request Forgery

CVE-2022-28137 MEDIUM

Jenkins JiraTestResultReporter < 165.v817928553942 - Missing Authorization for URL Connection

CVE-2022-28136 HIGH

Jenkins JiraTestResultReporter < 165.v817928553942 - Cross-Site Request Forgery

CVE-2022-28135 MEDIUM

Jenkins instant-messaging Plugin < 1.42 - Insufficiently Protected Credentials

CVE-2022-28134 MEDIUM

Jenkins Bitbucket Server Integration Plugin < 3.1.0 - Missing Authorization in HTTP Endpoints

CVE-2022-28133 MEDIUM

Jenkins Bitbucket Server Integration Plugin < 3.1.0 - Stored Cross-Site Scripting via OAuth Callback URL

CVE-2022-27218 MEDIUM

Jenkins incapptic connect uploader < 1.15 - Insufficiently Protected Credentials in job config.xml

CVE-2022-27217 MEDIUM

Jenkins Vmware vRealize CodeStream < 1.2 - Insufficiently Protected Credentials in Job Config Files

CVE-2022-27216 MEDIUM

Jenkins dbCharts Plugin <= 0.5.2 - Insufficiently Protected Credentials

CVE-2022-27215 MEDIUM

Jenkins Release Helper Plugin < 1.3.3 - Server-Side Request Forgery via Missing Permission Check

CVE-2022-27214 MEDIUM

Jenkins Release Helper Plugin < 1.3.3 - Cross-Site Request Forgery

CVE-2022-27213 MEDIUM

Jenkins Environment Dashboard Plugin <= 1.1.10 - Stored Cross-Site Scripting in Environment Order Configuration

CVE-2022-27212 MEDIUM

Jenkins List Git Branches Parameter Plugin <= 0.0.9 - Stored Cross-Site Scripting in Parameter Name

CVE-2022-27211 MEDIUM

Jenkins Kubernetes Continuous Deploy Plugin < 2.3.1 - Missing Authorization for SSH Credential Capture

Previous Page 29 of 71 Next

Products

jenkins 259 pipeline\ 37 script_security 33 blue_ocean 11 git 11 email_extension 10 active_directory 9 build_failure_analyzer 9 config_file_provider 9 configuration_as_code 9 ns-nd_integration_performance_publisher 8 credentials_binding 7 github_branch_source 7 html_publisher 7 kubernetes 7 openid_connect_authentication 7 openshift_deployer 7 rundeck 7 subversion 7 amazon_ec2 6 azure_ad 6 azure_vm_agents 6 deployment_dashboard 6 electricflow 6 gerrit_trigger 6 github 6 github_pull_request_builder 6 gitlab 6 google_compute_engine 6 hashicorp_vault 6

Quick Filters

Critical CVEs With Exploits In CISA KEV

Exploit Intelligence Platform

Blog Stats Labs Exploits Researchers CWE Ecosystems CLI MCP API Limits About Privacy