Search Blog Stats Labs

Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits

About

About Exploit Intel About Exploit Forge Privacy Policy

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Color Theme

Search Blog Statistics Labs Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits About About Exploit Forge Privacy

Exploit Database Researchers CWE Categories Vendors Ecosystems

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Follow:

Theme:

Home / Vendors / jenkins

jenkins

1,755 tracked vulnerabilities.

CVE-2025-27624 MEDIUM

Jenkins < 2.492.2, 2.493-2.499 - Cross-Site Request Forgery

CVE-2025-27623 MEDIUM

Jenkins < 2.492.2 and < 2.500 - Cleartext Storage of Sensitive Information in View Config

CVE-2025-27622 MEDIUM

Jenkins < 2.492.2, 2.493-2.499 - Cleartext Storage of Sensitive Information in Agent config.xml

CVE-2025-24403 MEDIUM

Jenkins Azure Service Fabric Plugin < 1.6 - Missing Authorization for Azure Credential ID Enumeration

CVE-2025-24402 MEDIUM

Jenkins Azure Service Fabric Plugin < 1.6 - Cross-Site Request Forgery

CVE-2025-24401 MEDIUM

Jenkins Folder-based Authorization Strategy Plugin < 217.vd5b_18537403e - Incorrect Authorization

CVE-2025-24400 MEDIUM

Jenkins Eiffel Broadcaster Plugin 2.8.0-2.10.2 - Incorrect Authorization via Credential ID Cache Key

CVE-2025-24399 HIGH

Jenkins Openid Connect Authentication - Incorrect Default Permissions

CVE-2025-24398 HIGH

Jenkins Bitbucket Server Integration Plugin 2.1.0-4.1.3 - Cross-Site Request Forgery Protection Bypass

CVE-2025-24397 MEDIUM

Jenkins GitLab Plugin < 1.9.6 - Incorrect Authorization via Global Item/Configure Permission

CVE-2024-9453 MEDIUM

Jenkins - Sensitive Information Exposure via Unobfuscated Bearer Token in Logs

CVE-2024-54004 MEDIUM

Jenkins Filesystem List Parameter Plugin <0.0.14 - Info Disclosure

CVE-2024-54003 HIGH

Jenkins Simple Queue Plugin <1.4.4 - XSS

CVE-2024-52554 HIGH

Jenkins Shared Library Version Override Plugin < 17.v786074c9fce7 - Missing Authorization

CVE-2024-52553 HIGH

Jenkins OpenId Connect Authentication Plugin < 4.421.v5422614eb_e0a - Insufficient Session Expiration

CVE-2024-52552 HIGH

Jenkins Authorize Project Plugin < 1.7.2 - Stored Cross-Site Scripting via Job Name Evaluation

CVE-2024-52551 HIGH

Jenkins Pipeline < 2.2214.vb_b_34b_2ea_9b_83 - Unapproved Script Execution via Build Restart

CVE-2024-52550 HIGH

Jenkins Pipeline: Groovy Plugin <3990.vd281dd77a_388 - Improper Input Validation

CVE-2024-52549 MEDIUM

Jenkins Script Security Plugin - Missing Authorization for File Existence Check

CVE-2024-47807 HIGH

Jenkins OpenId Connect Authentication Plugin <4.354.321ce67a-1de8 -...

CVE-2024-47806 HIGH

Jenkins OpenId Connect Authentication Plugin <4.354.v321ce67a_1de8 ...

CVE-2024-47805 HIGH

Jenkins Credentials Plugin <1380.va - Info Disclosure

CVE-2024-47804 MEDIUM

Jenkins < 2.462.3 and < 2.479 - Unauthenticated Item Creation Restriction Bypass via CLI or REST API

CVE-2024-47803 MEDIUM

Jenkins < 2.462.3 and < 2.479 - Sensitive Information Exposure in Error Messages

CVE-2024-43045 MEDIUM

Jenkins <2.470-<2.452.3 - Info Disclosure

Previous Page 5 of 71 Next

Products

jenkins 259 pipeline\ 37 script_security 33 blue_ocean 11 git 11 email_extension 10 active_directory 9 build_failure_analyzer 9 config_file_provider 9 configuration_as_code 9 ns-nd_integration_performance_publisher 8 credentials_binding 7 github_branch_source 7 html_publisher 7 kubernetes 7 openid_connect_authentication 7 openshift_deployer 7 rundeck 7 subversion 7 amazon_ec2 6 azure_ad 6 azure_vm_agents 6 deployment_dashboard 6 electricflow 6 gerrit_trigger 6 github 6 github_pull_request_builder 6 gitlab 6 google_compute_engine 6 hashicorp_vault 6

Quick Filters

Critical CVEs With Exploits In CISA KEV

Exploit Intelligence Platform

Blog Stats Labs Exploits Researchers CWE Ecosystems CLI MCP API Limits About Privacy