Search Blog Stats Labs

Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits

About

About Exploit Intel About Exploit Forge Privacy Policy

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Color Theme

Search Blog Statistics Labs Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits About About Exploit Forge Privacy

Exploit Database Researchers CWE Categories Vendors Ecosystems

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Follow:

Theme:

Home / Vendors / jenkins

jenkins

1,755 tracked vulnerabilities.

CVE-2020-2179 HIGH

Jenkins Yaml Axis Plugin <= 0.2.0 - Remote Code Execution via Unsafe YAML Deserialization

CVE-2020-2178 HIGH

Jenkins Parasoft Findings Plugin < 10.4.3 - XML External Entity Injection

CVE-2020-2177 MEDIUM

Jenkins Copr Plugin < 0.3 - Cleartext Storage of Sensitive Information in Job Config Files

CVE-2020-2176 MEDIUM

Jenkins useMango Runner Plugin < 1.4 - Cross-Site Scripting via useMango Service Values

CVE-2020-2175 MEDIUM

Jenkins FitNesse Plugin < 1.31 - Stored Cross-Site Scripting via Report Content

CVE-2020-2174 MEDIUM

Jenkins AWSEB Deployment Plugin < 0.3.19 - Reflected Cross-Site Scripting via Form Validation Output

CVE-2020-2173 MEDIUM

Jenkins Gatling Plugin < 1.2.7 - Cross-Site Scripting via Gatling Report Content

CVE-2020-2172 MEDIUM

Jenkins Code Coverage API Plugin < 1.1.4 - XML External Entity Injection

CVE-2020-2171 HIGH

Jenkins RapidDeploy Plugin < 4.2 - XML External Entity Injection

CVE-2020-2170 MEDIUM

Jenkins RapidDeploy Plugin < 4.2 - Stored Cross-Site Scripting via Package Name

CVE-2020-2169 MEDIUM

Jenkins Queue Cleanup Plugin < 1.3 - Reflected Cross-Site Scripting via Form Validation Endpoint

CVE-2020-2168 HIGH

Jenkins Azure Container Service Plugin <= 1.0.1 - Remote Code Execution via YAML Parser

CVE-2020-2167 HIGH

Jenkins OpenShift Pipeline Plugin <= 1.0.56 - Remote Code Execution via YAML Parser

CVE-2020-2166 HIGH

Jenkins Pipeline: AWS Steps Plugin < 1.40 - Remote Code Execution via YAML Deserialization

CVE-2020-2163 MEDIUM

Jenkins < 2.204.5 and < 2.227 - Stored Cross-Site Scripting in List View Column Headers

CVE-2020-2162 MEDIUM

Jenkins < 2.228 - Stored Cross-Site Scripting via Uploaded Build File Parameters

CVE-2020-2161 MEDIUM

Jenkins < 2.204.5 and < 2.227 - Stored Cross-Site Scripting in Node Label Form Validation

CVE-2020-2160 HIGH

Jenkins < 2.204.6 - Cross-Site Request Forgery Protection Bypass via URL Path Representation

CVE-2020-2159 HIGH

Jenkins CryptoMove Plugin < 0.1.33 - Authenticated OS Command Injection

CVE-2020-2158 HIGH

Jenkins Literate Plugin < 1.0 - Remote Code Execution via YAML Deserialization

CVE-2020-2157 MEDIUM

Jenkins Skytap Cloud CI Plugin <= 2.07 - Cleartext Transmission of Sensitive Credentials

CVE-2020-2156 MEDIUM

Jenkins DeployHub Plugin <= 8.0.14 - Cleartext Transmission of Sensitive Credentials

CVE-2020-2155 MEDIUM

Jenkins OpenShift Deployer Plugin <= 1.2.0 - Cleartext Transmission of Sensitive Credentials

CVE-2020-2154 MEDIUM

Jenkins Zephyr for JIRA Test Management Plugin < 1.5 - Cleartext Storage of Sensitive Information

CVE-2020-2153 MEDIUM

Jenkins Backlog Plugin < 2.4 - Cleartext Transmission of Sensitive Credentials

Previous Page 43 of 71 Next

Products

jenkins 259 pipeline\ 37 script_security 33 blue_ocean 11 git 11 email_extension 10 active_directory 9 build_failure_analyzer 9 config_file_provider 9 configuration_as_code 9 ns-nd_integration_performance_publisher 8 credentials_binding 7 github_branch_source 7 html_publisher 7 kubernetes 7 openid_connect_authentication 7 openshift_deployer 7 rundeck 7 subversion 7 amazon_ec2 6 azure_ad 6 azure_vm_agents 6 deployment_dashboard 6 electricflow 6 gerrit_trigger 6 github 6 github_pull_request_builder 6 gitlab 6 google_compute_engine 6 hashicorp_vault 6

Quick Filters

Critical CVEs With Exploits In CISA KEV

Exploit Intelligence Platform

Blog Stats Labs Exploits Researchers CWE Ecosystems CLI MCP API Limits About Privacy