Search Blog Stats Labs

Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits

About

About Exploit Intel About Exploit Forge Privacy Policy

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Color Theme

Search Blog Statistics Labs Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits About About Exploit Forge Privacy

Exploit Database Researchers CWE Categories Vendors Ecosystems

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Follow:

Theme:

Home / Vendors / jenkins

jenkins

1,755 tracked vulnerabilities.

CVE-2021-21686 HIGH

Jenkins < 2.303.3 and < 2.319 - Path Traversal via Symbolic Link Following

CVE-2021-21685 CRITICAL

Jenkins < 2.303.3 and < 2.319 - Missing Authorization for Directory Creation via FilePath#mkdirs

CVE-2021-21684 MEDIUM

Jenkins Git Plugin < 4.8.2 - Stored Cross-Site Scripting via Git SHA-1 Checksum Parameter

CVE-2021-21683 MEDIUM

Jenkins < 2.303.1, < 2.314 - Path Traversal via Windows File Browser

CVE-2021-21682 MEDIUM

Jenkins <2.314-<2.303.1 - Info Disclosure

CVE-2021-21681 MEDIUM

Jenkins Nomad Plugin < 0.7.4 - Insufficiently Protected Docker Credentials

CVE-2021-21680 HIGH

Jenkins Nested View Plugin < 1.20 - XML External Entity Injection

CVE-2021-21679 HIGH

Jenkins Azure AD Plugin < 179.vf6841393099e - Cross-Site Request Forgery Protection Bypass

CVE-2021-21678 HIGH

Jenkins SAML Plugin < 2.0.7 - Cross-Site Request Forgery Protection Bypass

CVE-2021-21677 HIGH

Jenkins Code Coverage API Plugin < 1.4.0 - Remote Code Execution via Untrusted Java Deserialization

CVE-2021-21676 MEDIUM

Jenkins requests-plugin < 2.2.7 - Missing Authorization in HTTP Endpoint

CVE-2021-21675 MEDIUM

Jenkins requests-plugin < 2.2.12 - Cross-Site Request Forgery

CVE-2021-21674 MEDIUM

Jenkins requests-plugin <2.2.6 - Info Disclosure

CVE-2021-21673 MEDIUM

Jenkins CAS Plugin < 1.6.0 - Open Redirect via Legitimacy Bypass

CVE-2021-21672 MEDIUM

Jenkins Selenium HTML Report Plugin <= 1.0 - XML External Entity Injection

CVE-2021-21671 HIGH

Jenkins < 2.300, LTS < 2.289.2 - Session Fixation

CVE-2021-21670 MEDIUM

Jenkins <2.299 - Privilege Escalation

CVE-2021-21669 CRITICAL

Jenkins Generic Webhook Trigger Plugin < 1.72 - XML External Entity Injection

CVE-2021-21668 MEDIUM

Jenkins Scriptler Plugin < 3.1 - Stored Cross-Site Scripting via Unescaped Script Content

CVE-2021-21667 MEDIUM

Jenkins Scriptler Plugin < 3.2 - Stored Cross-Site Scripting in Job Configuration Forms

CVE-2021-21666 MEDIUM

Jenkins Kiuwan Plugin < 1.6.0 - Reflected Cross-Site Scripting via Form Validation Endpoint

CVE-2021-21665 HIGH

Jenkins XebiaLabs XL Deploy Plugin < 10.0.1 - Cross-Site Request Forgery

CVE-2021-21664 MEDIUM

Jenkins XebiaLabs XL Deploy Plugin < 10.0.1 - Incorrect Authorization via URL Connection

CVE-2021-21663 MEDIUM

Jenkins XebiaLabs XL Deploy Plugin <7.5.8 - Open Redirect

CVE-2021-21662 MEDIUM

Jenkins XebiaLabs XL Deploy Plugin <10.0.1 - Info Disclosure

Previous Page 34 of 71 Next

Products

jenkins 259 pipeline\ 37 script_security 33 blue_ocean 11 git 11 email_extension 10 active_directory 9 build_failure_analyzer 9 config_file_provider 9 configuration_as_code 9 ns-nd_integration_performance_publisher 8 credentials_binding 7 github_branch_source 7 html_publisher 7 kubernetes 7 openid_connect_authentication 7 openshift_deployer 7 rundeck 7 subversion 7 amazon_ec2 6 azure_ad 6 azure_vm_agents 6 deployment_dashboard 6 electricflow 6 gerrit_trigger 6 github 6 github_pull_request_builder 6 gitlab 6 google_compute_engine 6 hashicorp_vault 6

Quick Filters

Critical CVEs With Exploits In CISA KEV

Exploit Intelligence Platform

Blog Stats Labs Exploits Researchers CWE Ecosystems CLI MCP API Limits About Privacy