org.jenkins-ci.plugins
1,035 tracked vulnerabilities.
CVE-2019-16547
MEDIUM
Jenkins Google Compute Engine Plugin <4.1.1 - Info Disclosure
Nov 21, 2019
CVSS 4.3
EPSS 0.01
CVE-2019-16546
MEDIUM
Jenkins Google Compute Engine Plugin <4.1.1 - Man-in-the-middle
Nov 21, 2019
CVSS 5.9
EPSS 0.01
CVE-2019-16545
MEDIUM
Jenkins QMetry for JIRA - Test Management Plugin - Info Disclosure
Nov 21, 2019
CVSS 6.5
EPSS 0.01
CVE-2019-16544
HIGH
Jenkins QMetry for JIRA - Test Mgmt Plugin <1.12 - Info Disclosure
Nov 21, 2019
CVSS 8.8
EPSS 0.01
CVE-2019-16542
MEDIUM
Jenkins Anchore Container Image Scanner Plugin <1.0.19 - Info Discl...
Nov 21, 2019
CVSS 6.5
EPSS 0.01
CVE-2019-16541
CRITICAL
Jenkins JIRA Plugin <3.0.10 - Privilege Escalation
Nov 21, 2019
CVSS 9.9
EPSS 0.02
CVE-2019-16540
MEDIUM
Jenkins Support Core Plugin <2.63 - Path Traversal
Nov 21, 2019
CVSS 6.5
EPSS 0.02
CVE-2019-16539
MEDIUM
Jenkins Support Core Plugin <2.63 - Privilege Escalation
Nov 21, 2019
CVSS 6.5
EPSS 0.01
CVE-2019-16538
HIGH
Jenkins Script Security Plugin <1.67 - RCE
Nov 21, 2019
CVSS 8.8
EPSS 0.01
CVE-2019-10476
HIGH
Jenkins Zulip Plugin < 1.1.0 - Insufficiently Protected Credentials
Oct 23, 2019
CVSS 7.8
EPSS 0.00
CVE-2019-10475
MEDIUM
NUCLEI
Jenkins build-metrics < 1.3 - Reflected Cross-Site Scripting
Oct 23, 2019
CVSS 6.1
EPSS 0.58
CVE-2019-10474
MEDIUM
Jenkins Global Post Script Plugin < 1.1.4 - Unauthenticated Information Disclosure via Script Listing
Oct 23, 2019
CVSS 4.3
EPSS 0.01
CVE-2019-10473
MEDIUM
Jenkins Libvirt Slaves Plugin < 1.8.5 - Unauthenticated Credential ID Enumeration via Form Methods
Oct 23, 2019
CVSS 4.3
EPSS 0.01
CVE-2019-10472
MEDIUM
Jenkins Libvirt Slaves Plugin < 1.8.5 - Missing Permission Check for SSH Credential Capture
Oct 23, 2019
CVSS 6.5
EPSS 0.01
CVE-2019-10471
HIGH
Jenkins Libvirt Slaves Plugin < 1.8.5 - Cross-Site Request Forgery
Oct 23, 2019
CVSS 8.8
EPSS 0.01
CVE-2019-10467
MEDIUM
Jenkins Sonar Gerrit Plugin < 2.3 - Insufficiently Protected Credentials in Job Config
Oct 23, 2019
CVSS 6.5
EPSS 0.01
CVE-2019-10465
MEDIUM
Jenkins Deploy WebLogic Plugin < 4.1 - Server-Side Request Forgery and Information Disclosure via URL Connection
Oct 23, 2019
CVSS 4.3
EPSS 0.01
CVE-2019-10464
HIGH
Jenkins Deploy WebLogic Plugin < 4.1 - Cross-Site Request Forgery
Oct 23, 2019
CVSS 8.8
EPSS 0.01
CVE-2019-10463
MEDIUM
Jenkins Dynatrace Application Monitoring < 2.1.4 - Incorrect Default Permissions
Oct 23, 2019
CVSS 6.5
EPSS 0.01
CVE-2019-10462
HIGH
Jenkins Dynatrace Application Monitoring < 2.1.3 - Cross-Site Request Forgery
Oct 23, 2019
CVSS 8.1
EPSS 0.01
CVE-2019-10461
HIGH
Jenkins Dynatrace Application Monitoring < 2.1.3 - Insufficiently Protected Credentials
Oct 23, 2019
CVSS 7.8
EPSS 0.00
CVE-2019-10460
HIGH
Jenkins Bitbucket OAuth Plugin < 0.9 - Unprotected Credential Storage in config.xml
Oct 23, 2019
CVSS 7.8
EPSS 0.00
CVE-2019-10459
MEDIUM
Jenkins Mattermost Notification Plugin < 2.7.0 - Insufficiently Protected Credentials in Global Configuration
Oct 23, 2019
CVSS 6.5
EPSS 0.01
CVE-2019-10457
MEDIUM
Jenkins Oracle Cloud Infrastructure Compute Classic Plugin < 1.0.0 - Missing Authorization
Oct 16, 2019
CVSS 4.3
EPSS 0.01
CVE-2019-10456
MEDIUM
Jenkins Oracle Cloud Infrastructure Compute Classic Plugin < 1.0.0 - Cross-Site Request Forgery
Oct 16, 2019
CVSS 4.3
EPSS 0.01
Products
script-security 35
git 13
email-ext 12
active-directory 11
config-file-provider 9
electricflow 9
credentials-binding 8
ec2 8
oic-auth 8
subversion 8
artifactory 7
htmlpublisher 7
jobConfigHistory 7
mercurial 7
openshift-deployer 7
rundeck 7
azure-ad 6
azure-vm-agents 6
ec2-deployment-dashboard 6
fortify-on-demand-uploader 6
ghprb 6
gitlab-oauth 6
gitlab-plugin 6
pipeline-maven 6
repository-connector 6
aws-codecommit-trigger 5
codedx 5
credentials 5
delphix 5
extended-choice-parameter 5
Quick Filters