org.jenkins-ci.plugins
1,035 tracked vulnerabilities.
CVE-2018-1000151
MEDIUM
Jenkins vSphere Plugin <2.16 - Info Disclosure
Apr 05, 2018
CVSS 5.6
EPSS 0.00
CVE-2018-1000150
LOW
Jenkins Reverse Proxy Auth Plugin <1.5 - Info Disclosure
Apr 05, 2018
CVSS 3.3
EPSS 0.00
CVE-2018-1000149
MEDIUM
Jenkins Ansible Plugin <0.8 - Man in the Middle
Apr 05, 2018
CVSS 5.6
EPSS 0.01
CVE-2018-1000148
MEDIUM
Jenkins Copy To Slave Plugin <1.4.4 - Info Disclosure
Apr 05, 2018
CVSS 6.5
EPSS 0.01
CVE-2018-1000146
HIGH
Liquibase Runner Plugin <1.3.0 - RCE
Apr 05, 2018
CVSS 8.8
EPSS 0.02
CVE-2018-1000144
MEDIUM
Jenkins Cucumber Living Documentation Plugin <1.0.12 - XSS
Apr 05, 2018
CVSS 6.1
EPSS 0.01
CVE-2018-1000143
MEDIUM
Jenkins GitHub Pull Request Builder Plugin <1.39.0 - Info Disclosure
Apr 05, 2018
CVSS 6.7
EPSS 0.00
CVE-2018-1000142
HIGH
Jenkins GitHub Pull Request Builder Plugin <1.39.0 - Info Disclosure
Apr 05, 2018
CVSS 7.8
EPSS 0.00
CVE-2018-8718
HIGH
Mailer Plugin 1.20 for Jenkins 2.111 - CSRF
Mar 27, 2018
CVSS 8.0
EPSS 0.07
CVE-2018-1000114
MEDIUM
Jenkins Promoted Builds Plugin <2.31.1 - Privilege Escalation
Mar 13, 2018
CVSS 4.3
EPSS 0.01
CVE-2018-1000113
MEDIUM
Jenkins TestLink Plugin <2.12 - XSS
Mar 13, 2018
CVSS 5.4
EPSS 0.01
CVE-2018-1000112
MEDIUM
Jenkins Mercurial Plugin <2.2 - Info Disclosure
Mar 13, 2018
CVSS 5.3
EPSS 0.01
CVE-2018-1000111
MEDIUM
Jenkins Subversion Plugin <2.10.2 - Auth Bypass
Mar 13, 2018
CVSS 5.3
EPSS 0.01
CVE-2018-1000110
MEDIUM
Jenkins Git Plugin <3.7.0 - Auth Bypass
Mar 13, 2018
CVSS 5.3
EPSS 0.04
CVE-2018-1000109
MEDIUM
Jenkins Google Play Android Publisher Plugin <1.6 - Auth Bypass
Mar 13, 2018
CVSS 4.3
EPSS 0.01
CVE-2018-1000108
MEDIUM
Jenkins CppNCSS Plugin < 1.1 - Cross-Site Scripting in AbstractProjectAction/index.jelly
Mar 13, 2018
CVSS 6.1
EPSS 0.01
CVE-2018-1000104
HIGH
Jenkins Coverity Plugin <1.10.0 - Info Disclosure
Mar 13, 2018
CVSS 7.8
EPSS 0.00
CVE-2018-1000057
MEDIUM
Jenkins Credentials Binding Plugin <1.14 - Info Disclosure
Feb 09, 2018
CVSS 4.3
EPSS 0.01
CVE-2018-1000056
HIGH
Jenkins JUnit Plugin <1.23 - SSRF/DoS
Feb 09, 2018
CVSS 8.3
EPSS 0.01
CVE-2018-1000014
HIGH
Jenkins Translation Assistance Plugin < 1.15 - Cross-Site Request Forgery
Jan 23, 2018
CVSS 8.8
EPSS 0.01
CVE-2018-1000013
HIGH
Jenkins Release Plugin < 2.9 - Cross-Site Request Forgery via Form Submission
Jan 23, 2018
CVSS 8.8
EPSS 0.01
CVE-2017-2654
LOW
Jenkins Email Extension < 2.57.1 - Information Exposure via Dynamic Recipient List
Aug 06, 2018
CVSS 3.7
EPSS 0.01
CVE-2017-2652
HIGH
Jenkins Distributed Fork < 1.5.0 - Authenticated Remote Code Execution via dist-fork CLI Command
Jul 27, 2018
CVSS 8.8
EPSS 0.01
CVE-2017-2649
HIGH
Jenkins Active Directory Plugin <= 2.2 - Improper Certificate Validation
Jul 27, 2018
CVSS 8.1
EPSS 0.01
CVE-2017-2648
MEDIUM
Jenkins SSH Slaves Plugin < 1.15 - Man-in-the-Middle via Missing Host Key Verification
Jul 27, 2018
CVSS 6.8
EPSS 0.01
Products
script-security 35
git 13
email-ext 12
active-directory 11
config-file-provider 9
electricflow 9
credentials-binding 8
ec2 8
oic-auth 8
subversion 8
artifactory 7
htmlpublisher 7
jobConfigHistory 7
mercurial 7
openshift-deployer 7
rundeck 7
azure-ad 6
azure-vm-agents 6
ec2-deployment-dashboard 6
fortify-on-demand-uploader 6
ghprb 6
gitlab-oauth 6
gitlab-plugin 6
pipeline-maven 6
repository-connector 6
aws-codecommit-trigger 5
codedx 5
credentials 5
delphix 5
extended-choice-parameter 5
Quick Filters