Search Blog Stats Labs

Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits

About

About Exploit Intel About Exploit Forge Privacy Policy

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Color Theme

Search Blog Statistics Labs Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits About About Exploit Forge Privacy

Exploit Database Researchers CWE Categories Vendors Ecosystems

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Follow:

Theme:

Home / Vendors / org.jenkins-ci.plugins

org.jenkins-ci.plugins

1,024 tracked vulnerabilities.

CVE-2019-10349 MEDIUM

Jenkins Dependency Graph Viewer Plugin < 0.13 - Stored Cross-Site Scripting

CVE-2019-10348 HIGH

Jenkins Gogs Plugin < 1.0.14 - Cleartext Storage of Sensitive Information in Job Config Files

CVE-2019-10339 HIGH

Jenkins JX Resources Plugin <= 1.0.36 - Missing Authorization in GlobalPluginConfiguration

CVE-2019-10338 HIGH

Jenkins JX Resources Plugin < 1.0.36 - Cross-Site Request Forgery via GlobalPluginConfiguration#doValidateClient

CVE-2019-10337 HIGH

Jenkins Token Macro Plugin < 2.7 - XML External Entity Injection via XML Macro

CVE-2019-10336 MEDIUM

Jenkins ElectricFlow < 1.1.6 - Cross-Site Scripting via Post-Build Step Configuration

CVE-2019-10335 MEDIUM

Jenkins ElectricFlow < 1.1.6 - Stored Cross-Site Scripting via Build Status Page

CVE-2019-10334 MEDIUM

Jenkins ElectricFlow < 1.1.5 - SSL/TLS and Hostname Verification Disabled via MultipartUtility.java

CVE-2019-10333 MEDIUM

Jenkins ElectricFlow < 1.1.5 - Missing Authorization in HTTP Endpoints

CVE-2019-10332 MEDIUM

Jenkins ElectricFlow < 1.1.5 - Missing Authorization in Configuration Connection Test

CVE-2019-10331 MEDIUM

Jenkins ElectricFlow < 1.1.5 - Cross-Site Request Forgery via Configuration Test Connection

CVE-2019-10330 HIGH

Jenkins Gitea Plugin <= 1.1.1 - Missing Authorization for Jenkinsfile Changes

CVE-2019-10329 HIGH

Jenkins InfluxDB Plugin <= 1.21 - Insufficiently Protected Credentials

CVE-2019-10328 CRITICAL

Jenkins Pipeline Remote Loader Plugin <1.4 - Code Injection

CVE-2019-10327 HIGH

Jenkins Pipeline Maven Integration Plugin < 1.7.0 - XML External Entity Injection via Malicious XML File

CVE-2019-10324 MEDIUM

Jenkins Artifactory Plugin < 3.2.3 - Cross-Site Request Forgery in Release and Staging Actions

CVE-2019-10323 MEDIUM

Jenkins Artifactory Plugin <= 3.2.3 - Missing Authorization in fillCredentialsIdItems Methods

CVE-2019-10322 MEDIUM

Jenkins Artifactory Plugin <= 3.2.2 - Missing Authorization in Test Connection Feature

CVE-2019-10321 MEDIUM

Jenkins Artifactory Plugin <= 3.2.2 - Cross-Site Request Forgery via Test Connection

CVE-2019-10320 MEDIUM

Jenkins Credentials Plugin <2.1.18 - Info Disclosure

CVE-2019-10318 HIGH

Jenkins Azure AD Plugin <= 0.3.3 - Insufficiently Protected Credentials in Global Configuration

CVE-2019-10316 HIGH

Jenkins Aqua MicroScanner Plugin <= 1.0.5 - Insufficiently Protected Credentials

CVE-2019-10315 HIGH

Jenkins GitHub Authentication Plugin < 0.31 - Cross-Site Request Forgery via OAuth State Parameter

CVE-2019-10314 MEDIUM

Jenkins Koji Plugin < 0.3 - Improper Certificate Validation

CVE-2019-10313 HIGH

Jenkins Twitter Plugin < 0.7 - Insufficiently Protected Credentials

Previous Page 33 of 41 Next

Products

script-security 35 git 13 email-ext 11 active-directory 9 config-file-provider 9 electricflow 9 ec2 8 oic-auth 8 subversion 8 artifactory 7 credentials-binding 7 htmlpublisher 7 jobConfigHistory 7 mercurial 7 openshift-deployer 7 rundeck 7 azure-ad 6 azure-vm-agents 6 ec2-deployment-dashboard 6 fortify-on-demand-uploader 6 ghprb 6 gitlab-oauth 6 gitlab-plugin 6 pipeline-maven 6 repository-connector 6 aws-codecommit-trigger 5 codedx 5 credentials 5 delphix 5 extended-choice-parameter 5

Quick Filters

Critical CVEs With Exploits In CISA KEV

Exploit Intelligence Platform

Blog Stats Labs Exploits Researchers CWE Ecosystems CLI MCP API Limits About Privacy