org.jenkins-ci.plugins
1,035 tracked vulnerabilities.
CVE-2019-10292
MEDIUM
Jenkins Kmap Plugin - Cross-Site Request Forgery via Form Validation
Apr 04, 2019
CVSS 6.5
EPSS 0.01
CVE-2019-10291
HIGH
Jenkins Netsparker Cloud Scan Plugin < 1.1.5 - Insufficiently Protected Credentials
Apr 04, 2019
CVSS 8.8
EPSS 0.02
CVE-2019-10290
MEDIUM
Jenkins Netsparker Cloud Scan Plugin < 1.1.5 - Missing Authorization in NCScanBuilder Descriptor Validation
Apr 04, 2019
CVSS 6.5
EPSS 0.02
CVE-2019-10289
MEDIUM
Jenkins Netsparker Cloud Scan < 1.1.5 - Cross-Site Request Forgery via API Validation Method
Apr 04, 2019
CVSS 6.5
EPSS 0.01
CVE-2019-10287
HIGH
Jenkins youtrack-plugin < 0.7.1 - Insufficiently Protected Credentials
Apr 04, 2019
CVSS 8.8
EPSS 0.02
CVE-2019-10285
HIGH
Jenkins Minio Storage Plugin - Insufficiently Protected Credentials
Apr 04, 2019
CVSS 8.8
EPSS 0.02
CVE-2019-10284
HIGH
Jenkins Diawi Upload Plugin - Insufficiently Protected Credentials in Job Configuration
Apr 04, 2019
CVSS 8.8
EPSS 0.02
CVE-2019-10281
HIGH
Jenkins Relution Enterprise Appstore Publisher Plugin - Insufficiently Protected Credentials
Apr 04, 2019
CVSS 8.8
EPSS 0.02
CVE-2019-10280
HIGH
Jenkins Assembla Auth Plugin < 1.13 - Insufficiently Protected Credentials in config.xml
Apr 04, 2019
CVSS 8.8
EPSS 0.02
CVE-2019-10279
MEDIUM
Jenkins Reviewbot Plugin - Missing Authorization in Test Connection Form Validation
Apr 04, 2019
CVSS 6.5
EPSS 0.01
CVE-2019-10278
MEDIUM
Jenkins Reviewbot Plugin - Cross-Site Request Forgery via Test Connection Form
Apr 04, 2019
CVSS 6.5
EPSS 0.01
CVE-2019-1003099
MEDIUM
Jenkins openid < 2.3 - Missing Authorization in OpenIdSsoSecurityRealm Descriptor Validation
Apr 04, 2019
CVSS 6.5
EPSS 0.02
CVE-2019-1003098
MEDIUM
Jenkins openid Plugin < 2.4 - Cross-Site Request Forgery via Form Validation Method
Apr 04, 2019
CVSS 6.5
EPSS 0.01
CVE-2019-1003096
MEDIUM
Jenkins TestFairy Plugin - Info Disclosure
Apr 04, 2019
CVSS 6.5
EPSS 0.02
CVE-2019-1003095
MEDIUM
Jenkins Perfecto Mobile Plugin - Info Disclosure
Apr 04, 2019
CVSS 6.5
EPSS 0.01
CVE-2019-1003094
MEDIUM
Jenkins Open STF Plugin - Info Disclosure
Apr 04, 2019
CVSS 6.5
EPSS 0.01
CVE-2019-1003093
MEDIUM
Jenkins Nomad Plugin - Privilege Escalation
Apr 04, 2019
CVSS 6.5
EPSS 0.02
CVE-2019-1003092
MEDIUM
Jenkins Nomad Plugin < 0.5.1 - Cross-Site Request Forgery via Test Connection Form
Apr 04, 2019
CVSS 6.5
EPSS 0.01
CVE-2019-1003087
MEDIUM
Jenkins Chef Sinatra Plugin - Privilege Escalation
Apr 04, 2019
CVSS 6.5
EPSS 0.02
CVE-2019-1003086
MEDIUM
Jenkins Chef Sinatra Plugin - Cross-Site Request Forgery via Connection Test Form
Apr 04, 2019
CVSS 6.5
EPSS 0.01
CVE-2019-1003085
MEDIUM
Jenkins Zephyr Enterprise Test Management Plugin < 1.6 - Missing Authorization in Test Connection Validation
Apr 04, 2019
CVSS 6.5
EPSS 0.02
CVE-2019-1003084
MEDIUM
Jenkins Zephyr Enterprise Test Management Plugin - CSRF
Apr 04, 2019
CVSS 6.5
EPSS 0.01
CVE-2019-1003083
MEDIUM
Jenkins Gearman Plugin - Privilege Escalation
Apr 04, 2019
CVSS 6.5
EPSS 0.01
CVE-2019-1003082
MEDIUM
Jenkins Gearman Plugin < 0.4.0 - Cross-Site Request Forgery via Test Connection Form
Apr 04, 2019
CVSS 6.5
EPSS 0.01
CVE-2019-1003081
MEDIUM
Jenkins OpenShift Deployer Plugin - SSRF
Apr 04, 2019
CVSS 6.5
EPSS 0.02
Products
script-security 35
git 13
email-ext 12
active-directory 11
config-file-provider 9
electricflow 9
credentials-binding 8
ec2 8
oic-auth 8
subversion 8
artifactory 7
htmlpublisher 7
jobConfigHistory 7
mercurial 7
openshift-deployer 7
rundeck 7
azure-ad 6
azure-vm-agents 6
ec2-deployment-dashboard 6
fortify-on-demand-uploader 6
ghprb 6
gitlab-oauth 6
gitlab-plugin 6
pipeline-maven 6
repository-connector 6
aws-codecommit-trigger 5
codedx 5
credentials 5
delphix 5
extended-choice-parameter 5
Quick Filters