Search Blog Stats Labs

Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits

About

About Exploit Intel About Exploit Forge Privacy Policy

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Color Theme

Search Blog Statistics Labs Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits About About Exploit Forge Privacy

Exploit Database Researchers CWE Categories Vendors Ecosystems

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Follow:

Theme:

Home / Vendors / jenkins

jenkins

1,755 tracked vulnerabilities.

CVE-2023-43498 HIGH

Jenkins <2.423-2.414.1 - Info Disclosure

CVE-2023-43497 HIGH

Jenkins < 2.414.2 and 2.423 - Unrestricted Upload of File with Dangerous Type via Stapler Web Framework

CVE-2023-43496 HIGH

Jenkins < 2.414.2 and < 2.424 - Incorrect Default Permissions in Plugin Installation

CVE-2023-43495 MEDIUM

Jenkins < 2.414.2, < 2.424 - Stored Cross-Site Scripting in ExpandableDetailsNote Caption Parameter

CVE-2023-43494 MEDIUM

Jenkins 2.50-2.423 LTS 2.60.1-2.414.1 - Info Disclosure

CVE-2023-41947 MEDIUM

Jenkins Frugal Testing Plugin < 1.1 - Missing Authorization for Frugal Testing Connection

CVE-2023-41946 LOW

Jenkins Frugal Testing Plugin <= 1.1 - Cross-Site Request Forgery

CVE-2023-41945 HIGH

Jenkins Assembla Auth Plugin < 1.14 - Missing Authorization

CVE-2023-41944 MEDIUM

Jenkins AWS CodeCommit Trigger Plugin <= 3.0.12 - HTML Injection via Queue Name Parameter

CVE-2023-41943 MEDIUM

Jenkins AWS CodeCommit Trigger Plugin < 3.0.12 - Missing Authorization in HTTP Endpoint

CVE-2023-41942 MEDIUM

Jenkins AWS CodeCommit Trigger Plugin < 3.0.12 - Cross-Site Request Forgery

CVE-2023-41941 MEDIUM

Jenkins AWS CodeCommit Trigger Plugin < 3.0.12 - Missing Authorization for Credential ID Enumeration

CVE-2023-41940 MEDIUM

Jenkins TAP Plugin < 2.3 - Stored Cross-Site Scripting via TAP File Contents

CVE-2023-41939 HIGH

Jenkins SSH2 Easy Plugin <1.4 - Privilege Escalation

CVE-2023-41938 MEDIUM

Jenkins Ivy Plugin < 2.5 - Cross-Site Request Forgery

CVE-2023-41937 HIGH

Jenkins Bitbucket Push and Pull Request Plugin 2.4.0-2.8.3 - Server-Side Request Forgery via Webhook Payload

CVE-2023-41936 HIGH

Jenkins Google Login Plugin <1.7 - Info Disclosure

CVE-2023-41935 HIGH

Jenkins Azure AD Plugin < 396.v86ce29279947 - Non-Constant Time Comparison in CSRF Nonce Check

CVE-2023-41934 MEDIUM

Jenkins Pipeline Maven Integration Plugin < 1330.v18e473854496 - Sensitive Information Exposure in Build Logs

CVE-2023-41933 HIGH

Jenkins Job Configuration History Plugin < 1229.v3039470161a_d - XML External Entity Injection

CVE-2023-41932 MEDIUM

Jenkins Job Configuration History Plugin < 1227.v7a_79fc4dc01f - Directory Deletion via Timestamp Query Parameter

CVE-2023-41931 MEDIUM

Jenkins Job Configuration History Plugin < 1227.v7a_79fc4dc01f - Stored Cross-Site Scripting in History View Timestamp

CVE-2023-41930 MEDIUM

Jenkins Job Configuration History Plugin < 1227.v7a_79fc4dc01f - Path Traversal via Name Query Parameter

CVE-2023-4303 MEDIUM

Jenkins Fortify Plugin <22.1.38 - XSS

CVE-2023-4302 MEDIUM

Jenkins Fortify Plugin <22.1.38 - Open Redirect

Previous Page 9 of 71 Next

Products

jenkins 259 pipeline\ 37 script_security 33 blue_ocean 11 git 11 email_extension 10 active_directory 9 build_failure_analyzer 9 config_file_provider 9 configuration_as_code 9 ns-nd_integration_performance_publisher 8 credentials_binding 7 github_branch_source 7 html_publisher 7 kubernetes 7 openid_connect_authentication 7 openshift_deployer 7 rundeck 7 subversion 7 amazon_ec2 6 azure_ad 6 azure_vm_agents 6 deployment_dashboard 6 electricflow 6 gerrit_trigger 6 github 6 github_pull_request_builder 6 gitlab 6 google_compute_engine 6 hashicorp_vault 6

Quick Filters

Critical CVEs With Exploits In CISA KEV

Exploit Intelligence Platform

Blog Stats Labs Exploits Researchers CWE Ecosystems CLI MCP API Limits About Privacy