Search Blog Stats Labs

Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits

About

About Exploit Intel About Exploit Forge Privacy Policy

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Color Theme

Search Blog Statistics Labs Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits About About Exploit Forge Privacy

Exploit Database Researchers CWE Categories Vendors Ecosystems

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Follow:

Theme:

Home / Vendors / jenkins

jenkins

1,755 tracked vulnerabilities.

CVE-2019-10319 MEDIUM

Jenkins PAM Authentication Plugin 1.5 and earlier - Missing Authorization in PamSecurityRealm.DescriptorImpl#doTest

CVE-2019-10318 HIGH

Jenkins Azure AD Plugin <= 0.3.3 - Insufficiently Protected Credentials in Global Configuration

CVE-2019-10317 MEDIUM

Jenkins SiteMonitor Plugin < 0.5 - SSL/TLS and Hostname Verification Disabled

CVE-2019-10316 HIGH

Jenkins Aqua MicroScanner Plugin <= 1.0.5 - Insufficiently Protected Credentials

CVE-2019-10315 HIGH

Jenkins GitHub Authentication Plugin < 0.31 - Cross-Site Request Forgery via OAuth State Parameter

CVE-2019-10314 MEDIUM

Jenkins Koji Plugin < 0.3 - Improper Certificate Validation

CVE-2019-10313 HIGH

Jenkins Twitter Plugin < 0.7 - Insufficiently Protected Credentials

CVE-2019-10312 MEDIUM

Jenkins Ansible Tower Plugin <= 0.9.1 - Missing Authorization in TowerInstallation Descriptor

CVE-2019-10311 HIGH

Jenkins Ansible Tower Plugin < 0.9.1 - Missing Authorization in TowerInstallation Connection Test

CVE-2019-10310 HIGH

Jenkins Ansible Tower Plugin < 0.9.1 - Cross-Site Request Forgery via TowerInstallation Connection Test

CVE-2019-10309 CRITICAL

Jenkins Self-Organizing Swarm Modules Plugin - XML External Entity Injection via UDP Broadcast Response

CVE-2019-10308 MEDIUM

Jenkins Static Analysis Utilities < 1.95 - Missing Authorization in DefaultGraphConfigurationView#doSave

CVE-2019-10307 MEDIUM

Jenkins Static Analysis Utilities Plugin < 1.95 - Cross-Site Request Forgery via DefaultGraphConfigurationView#doSave

CVE-2019-10306 CRITICAL

Jenkins ontrack < 3.4 - Sandbox Bypass via DSL Definition

CVE-2019-10305 MEDIUM

Jenkins XebiaLabs XL Deploy Plugin < 7.5.3 - Missing Authorization in Credential Validation

CVE-2019-10304 MEDIUM

Jenkins XebiaLabs XL Deploy Plugin < 7.5.3 - Cross-Site Request Forgery via Credential Form Validation

CVE-2019-10303 HIGH

Jenkins Azure PublisherSettings Credentials Plugin < 1.2 - Insufficiently Protected Credentials

CVE-2019-10302 HIGH

Jenkins jira-ext < 0.8 - Insufficiently Protected Credentials

CVE-2019-10301 HIGH

Jenkins GitLab Plugin < 1.5.11 - Missing Authorization in Connection Test

CVE-2019-10300 HIGH

Jenkins GitLab Plugin < 1.5.11 - Cross-Site Request Forgery via Test Connection Form

CVE-2019-1003050 MEDIUM

Jenkins < 2.164.2 - Stored Cross-Site Scripting via Job URL in f:validateButton

CVE-2019-1003049 HIGH

Jenkins < 2.164.1 and < 2.171 - Insufficient Session Expiration

CVE-2019-10299 HIGH

Jenkins CloudCoreo DeployTime Plugin - Insufficiently Protected Credentials

CVE-2019-10298 HIGH

Jenkins Koji Plugin - Insufficiently Protected Credentials

CVE-2019-10297 HIGH

Jenkins Sametime Plugin - Insufficiently Protected Credentials

Previous Page 54 of 71 Next

Products

jenkins 259 pipeline\ 37 script_security 33 blue_ocean 11 git 11 email_extension 10 active_directory 9 build_failure_analyzer 9 config_file_provider 9 configuration_as_code 9 ns-nd_integration_performance_publisher 8 credentials_binding 7 github_branch_source 7 html_publisher 7 kubernetes 7 openid_connect_authentication 7 openshift_deployer 7 rundeck 7 subversion 7 amazon_ec2 6 azure_ad 6 azure_vm_agents 6 deployment_dashboard 6 electricflow 6 gerrit_trigger 6 github 6 github_pull_request_builder 6 gitlab 6 google_compute_engine 6 hashicorp_vault 6

Quick Filters

Critical CVEs With Exploits In CISA KEV

Exploit Intelligence Platform

Blog Stats Labs Exploits Researchers CWE Ecosystems CLI MCP API Limits About Privacy