Search Blog Stats Labs

Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits

About

About Exploit Intel About Exploit Forge Privacy Policy

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Color Theme

Search Blog Statistics Labs Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits About About Exploit Forge Privacy

Exploit Database Researchers CWE Categories Vendors Ecosystems

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Follow:

Theme:

Home / Vendors / jenkins

jenkins

1,755 tracked vulnerabilities.

CVE-2024-28149 MEDIUM

Jenkins HTML Publisher Plugin 1.16-1.32 - Cross-Site Scripting via Improper Input Sanitization

CVE-2024-23905 MEDIUM

Jenkins Red Hat Dependency Analytics Plugin < 0.7.1 - Stored Cross-Site Scripting via Disabled Content-Security-Policy

CVE-2024-23904 HIGH

Jenkins Log Command Plugin < 1.0.2 - Unauthenticated Arbitrary File Read via Command Parser

CVE-2024-23903 MEDIUM

Jenkins GitLab Branch Source Plugin <684 - Info Disclosure

CVE-2024-23902 MEDIUM

Jenkins GitLab Branch Source Plugin < 684.vea_fa_7c1e2fe3 - Cross-Site Request Forgery

CVE-2024-23901 MEDIUM

Jenkins GitLab Branch Source Plugin <684 - Info Disclosure

CVE-2024-23900 MEDIUM

Jenkins Matrix Project Plugin <822.v01b_8c85d16d2 - Privilege Escal...

CVE-2024-23899 MEDIUM

Jenkins Git Server Plugin < 99.va_0826a_b_cdfa_d - Arbitrary File Read via Command Parser

CVE-2024-23898 HIGH

Jenkins 2.217-2.441 and LTS 2.222.1-2.426.2 - Cross-Site WebSocket Hijacking via CLI Endpoint

CVE-2024-23897 CRITICAL KEVNUCLEI

Jenkins cli Ampersand Replacement Arbitrary File Read

CVE-2023-50779 MEDIUM

Jenkins PaaSLane Estimate Plugin < 1.0.4 - Missing Authorization

CVE-2023-50778 HIGH

Jenkins PaaSLane Estimate Plugin < 1.0.4 - Cross-Site Request Forgery

CVE-2023-50777 MEDIUM

Jenkins PaaSLane Estimate Plugin <= 1.0.4 - Cleartext Storage of Sensitive Information

CVE-2023-50776 MEDIUM

Jenkins PaaSLane Estimate Plugin <= 1.0.4 - Cleartext Storage of Sensitive Information in Job config.xml

CVE-2023-50775 MEDIUM

Jenkins Deployment Dashboard Plugin < 1.0.10 - Cross-Site Request Forgery

CVE-2023-50774 HIGH

Jenkins HTMLResource Plugin 1.02 - Cross-Site Request Forgery

CVE-2023-50773 MEDIUM

Jenkins Dingding JSON Pusher Plugin < 2.0 - Cleartext Storage of Sensitive Information

CVE-2023-50772 MEDIUM

Jenkins Dingding JSON Pusher Plugin <= 2.0 - Cleartext Storage of Sensitive Information in Job Config

CVE-2023-50771 MEDIUM

Jenkins OpenId Connect Authentication Plugin < 2.6 - Open Redirect via Login Redirect URL

CVE-2023-50770 MEDIUM

Jenkins OpenId Connect Authentication Plugin < 2.6 - Insufficiently Protected Credentials

CVE-2023-50769 MEDIUM

Jenkins Nexus Platform Plugin < 3.18.0-03 - Missing Authorization

CVE-2023-50768 HIGH

Jenkins Nexus Platform Plugin < 3.18.0-03 - Cross-Site Request Forgery

CVE-2023-50767 MEDIUM

Jenkins Nexus Platform Plugin < 3.18.0-03 - Server-Side Request Forgery via XML Response Parsing

CVE-2023-50766 HIGH

Jenkins Nexus Platform Plugin < 3.18.0-03 - Cross-Site Request Forgery

CVE-2023-50765 MEDIUM

Jenkins Scriptler Plugin < 342.v6a_89fd40f466 - Unauthorized Groovy Script Content Read via Script ID

Previous Page 7 of 71 Next

Products

jenkins 259 pipeline\ 37 script_security 33 blue_ocean 11 git 11 email_extension 10 active_directory 9 build_failure_analyzer 9 config_file_provider 9 configuration_as_code 9 ns-nd_integration_performance_publisher 8 credentials_binding 7 github_branch_source 7 html_publisher 7 kubernetes 7 openid_connect_authentication 7 openshift_deployer 7 rundeck 7 subversion 7 amazon_ec2 6 azure_ad 6 azure_vm_agents 6 deployment_dashboard 6 electricflow 6 gerrit_trigger 6 github 6 github_pull_request_builder 6 gitlab 6 google_compute_engine 6 hashicorp_vault 6

Quick Filters

Critical CVEs With Exploits In CISA KEV

Exploit Intelligence Platform

Blog Stats Labs Exploits Researchers CWE Ecosystems CLI MCP API Limits About Privacy