Search Blog Stats Labs

Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits

About

About Exploit Intel About Exploit Forge Privacy Policy

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Color Theme

Search Blog Statistics Labs Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits About About Exploit Forge Privacy

Exploit Database Researchers CWE Categories Vendors Ecosystems

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Follow:

Theme:

Home / Vendors / jenkins

jenkins

1,755 tracked vulnerabilities.

CVE-2020-2127 MEDIUM

Jenkins BMC Release Package and Deployment Plugin < 1.1 - Unencrypted Credential Storage

CVE-2020-2126 MEDIUM

Jenkins DigitalOcean Plugin <= 1.1 - Insufficiently Protected Credentials

CVE-2020-2125 MEDIUM

Jenkins Debian Package Builder Plugin < 1.6.11 - Insufficiently Protected Credentials

CVE-2020-2124 MEDIUM

Jenkins Dynamic Extended Choice Parameter Plugin < 1.0.1 - Insufficiently Protected Credentials

CVE-2020-2123 HIGH

Jenkins RadarGun Plugin < 1.7 - Remote Code Execution via YAML Deserialization

CVE-2020-2122 MEDIUM

Jenkins Brakeman Plugin < 0.12 - Stored Cross-Site Scripting via Unescaped JSON Values

CVE-2020-2121 HIGH

Jenkins Google Kubernetes Engine Plugin < 0.8.0 - Remote Code Execution via YAML Parser

CVE-2020-2120 HIGH

Jenkins FitNesse Plugin < 1.30 - XML External Entity Injection

CVE-2020-2119 MEDIUM

Jenkins Azure AD Plugin <= 1.1.2 - Insufficiently Protected Credentials

CVE-2020-2118 MEDIUM

Jenkins Pipeline GitHub Notify Step Plugin < 1.0.4 - Credential ID Enumeration via Form-Related Methods

CVE-2020-2117 MEDIUM

Jenkins Pipeline GitHub Notify Step Plugin < 1.0.4 - Missing Permission Check

CVE-2020-2116 HIGH

Jenkins Pipeline GitHub Notify Step < 1.0.4 - Cross-Site Request Forgery

CVE-2020-2115 HIGH

Jenkins NUnit < 0.25 - XML External Entity Injection

CVE-2020-2114 HIGH

Jenkins S3 Publisher Plugin <= 0.11.4 - Plaintext Credential Exposure in Global Configuration

CVE-2020-2113 MEDIUM

Jenkins Git Parameter Plugin < 0.9.11 - Stored Cross-Site Scripting via Default Value

CVE-2020-2112 MEDIUM

Jenkins Git Parameter Plugin <= 0.9.11 - Stored Cross-Site Scripting in Parameter Name

CVE-2020-2111 MEDIUM

Jenkins Subversion Plugin < 2.13.0 - Stored Cross-Site Scripting in Project Repository Base URL Field

CVE-2020-2110 HIGH

Jenkins Script Security Plugin < 1.69 - Sandbox Bypass via AST Transforming Annotations

CVE-2020-2109 HIGH

Jenkins Pipeline < 2.78 - Sandbox Protection Bypass via Default Parameter Expressions

CVE-2020-2108 HIGH

Jenkins WebSphere Deployer Plugin < 1.6.1 - XML External Entity Injection via Job Configuration

CVE-2020-2107 MEDIUM

Jenkins Fortify Plugin < 19.1.29 - Insufficiently Protected Credentials in Job config.xml

CVE-2020-2106 MEDIUM

Jenkins Code Coverage API Plugin < 1.1.2 - Stored Cross-Site Scripting in Coverage Report Filename

CVE-2020-2105 MEDIUM

Jenkins < 2.204.1 and < 2.218 - Clickjacking via REST API Endpoints

CVE-2020-2104 MEDIUM

Jenkins < 2.204.1 and < 2.218 - Incorrect Authorization for JVM Memory Usage Chart

CVE-2020-2103 MEDIUM NUCLEI

Jenkins < 2.204.1, 2.205-2.218 - Exposure of Sensitive Information via whoAmI Diagnostic Page

Previous Page 45 of 71 Next

Products

jenkins 259 pipeline\ 37 script_security 33 blue_ocean 11 git 11 email_extension 10 active_directory 9 build_failure_analyzer 9 config_file_provider 9 configuration_as_code 9 ns-nd_integration_performance_publisher 8 credentials_binding 7 github_branch_source 7 html_publisher 7 kubernetes 7 openid_connect_authentication 7 openshift_deployer 7 rundeck 7 subversion 7 amazon_ec2 6 azure_ad 6 azure_vm_agents 6 deployment_dashboard 6 electricflow 6 gerrit_trigger 6 github 6 github_pull_request_builder 6 gitlab 6 google_compute_engine 6 hashicorp_vault 6

Quick Filters

Critical CVEs With Exploits In CISA KEV

Exploit Intelligence Platform

Blog Stats Labs Exploits Researchers CWE Ecosystems CLI MCP API Limits About Privacy