org.jenkins-ci.plugins
1,035 tracked vulnerabilities.
CVE-2019-1003009
HIGH
Jenkins Active Directory Plugin <2.10 - RCE
Feb 06, 2019
CVSS 7.4
EPSS 0.01
CVE-2019-1003006
HIGH
Jenkins Groovy < 2.0 - Authenticated Remote Code Execution via StringScriptSource
Feb 06, 2019
CVSS 8.8
EPSS 0.02
CVE-2019-1003005
HIGH
Jenkins Script Security Plugin <1.50 - RCE
Feb 06, 2019
CVSS 8.8
EPSS 0.19
CVE-2019-1003001
HIGH
Pipeline: Groovy Plugin <2.61 - RCE
Jan 22, 2019
CVSS 8.8
EPSS 0.86
CVE-2019-1003000
HIGH
NUCLEI
Jenkins Script Security Plugin < 1.50 - Sandbox Bypass Remote Code Execution
Jan 22, 2019
CVSS 8.8
EPSS 0.98
CVE-2018-1000425
HIGH
Jenkins SonarQube Scanner Plugin <2.8 - Info Disclosure
Jan 09, 2019
CVSS 7.8
EPSS 0.00
CVE-2018-1000424
HIGH
Jenkins Artifactory Plugin <2.16.1 - Info Disclosure
Jan 09, 2019
CVSS 7.8
EPSS 0.00
CVE-2018-1000423
HIGH
Jenkins Crowd <2.0.0 - Info Disclosure
Jan 09, 2019
CVSS 7.8
EPSS 0.00
CVE-2018-1000422
MEDIUM
Jenkins Crowd 2 Integration Plugin < 2.0.0 - Server-Side Request Forgery via Connection Test
Jan 09, 2019
CVSS 6.5
EPSS 0.01
CVE-2018-1000421
MEDIUM
Jenkins Mesos Plugin <0.17.1 - Auth Bypass
Jan 09, 2019
CVSS 6.5
EPSS 0.01
CVE-2018-1000420
MEDIUM
Jenkins Mesos Plugin <0.17.1 - Auth Bypass
Jan 09, 2019
CVSS 6.5
EPSS 0.01
CVE-2018-1000417
HIGH
Jenkins Email Extension Template Plugin <1.0 - CSRF
Jan 09, 2019
CVSS 8.1
EPSS 0.01
CVE-2018-1000416
MEDIUM
Jenkins Job Config History Plugin <2.18 - XSS
Jan 09, 2019
CVSS 6.1
EPSS 0.01
CVE-2018-1000414
HIGH
Jenkins Config File Provider Plugin <3.1 - CSRF
Jan 09, 2019
CVSS 8.1
EPSS 0.01
CVE-2018-1000413
MEDIUM
Jenkins Config File Provider Plugin <3.1 - XSS
Jan 09, 2019
CVSS 5.4
EPSS 0.01
CVE-2018-1000412
HIGH
Jenkins Jira Plugin <3.0.1 - Auth Bypass
Jan 09, 2019
CVSS 8.8
EPSS 0.01
CVE-2018-1000411
MEDIUM
Jenkins JUnit Plugin < 1.25 - Cross-Site Request Forgery in TestObject.java
Jan 09, 2019
CVSS 6.5
EPSS 0.01
CVE-2018-1000866
HIGH
Pipeline: Groovy Plugin <2.59 - Code Injection
Dec 10, 2018
CVSS 8.8
EPSS 0.02
CVE-2018-1000865
HIGH
Jenkins Script Security Plugin < 1.47 - Sandbox Bypass via SandboxTransformer
Dec 10, 2018
CVSS 8.8
EPSS 0.02
CVE-2018-1999039
MEDIUM
Jenkins Confluence Publisher Plugin <2.0.1 - SSRF
Aug 01, 2018
CVSS 4.3
EPSS 0.01
CVE-2018-1999038
MEDIUM
Jenkins Publisher Over CIFS Plugin <0.10 - Confused Deputy
Aug 01, 2018
CVSS 4.2
EPSS 0.00
CVE-2018-1999037
MEDIUM
Jenkins Resource Disposer Plugin <0.11 - Info Disclosure
Aug 01, 2018
CVSS 4.3
EPSS 0.01
CVE-2018-1999036
MEDIUM
Jenkins SSH Agent Plugin <1.15 - Info Disclosure
Aug 01, 2018
CVSS 6.5
EPSS 0.01
CVE-2018-1999033
MEDIUM
Jenkins Anchore Container Image Scanner Plugin <= 10.16 - Exposure of Sensitive Information via AnchoreBuilder.java
Aug 01, 2018
CVSS 6.5
EPSS 0.01
CVE-2018-1999032
MEDIUM
Agiletestware Pangolin Connector For Testrail < 2.1 - Improper Privilege Management
Aug 01, 2018
CVSS 6.5
EPSS 0.01
Products
script-security 35
git 13
email-ext 12
active-directory 11
config-file-provider 9
electricflow 9
credentials-binding 8
ec2 8
oic-auth 8
subversion 8
artifactory 7
htmlpublisher 7
jobConfigHistory 7
mercurial 7
openshift-deployer 7
rundeck 7
azure-ad 6
azure-vm-agents 6
ec2-deployment-dashboard 6
fortify-on-demand-uploader 6
ghprb 6
gitlab-oauth 6
gitlab-plugin 6
pipeline-maven 6
repository-connector 6
aws-codecommit-trigger 5
codedx 5
credentials 5
delphix 5
extended-choice-parameter 5
Quick Filters