org.jenkins-ci.plugins
1,035 tracked vulnerabilities.
CVE-2017-1000085
MEDIUM
Subversion Plugin - Info Disclosure
Oct 05, 2017
CVSS 6.5
EPSS 0.01
CVE-2017-1000084
MEDIUM
Jenkins Parameterized Trigger Plugin - Unauthenticated Arbitrary Project Triggering
Oct 05, 2017
CVSS 6.5
EPSS 0.01
CVE-2016-3102
HIGH
Jenkins Script Security Plugin < 1.18.1 - Sandbox Bypass via Direct Field Access or Array Operations
Feb 09, 2017
CVSS 7.3
EPSS 0.02
CVE-2016-3101
MEDIUM
Jenkins Extra Columns < 1.17 - Cross-Site Scripting via Unfiltered Tooltip Markup
Feb 09, 2017
CVSS 5.4
EPSS 0.01
CVE-2015-5298
MEDIUM
Google Login Plugin <1.2 - Auth Bypass
Jul 07, 2022
CVSS 6.5
EPSS 0.01
CVE-2013-6372
Jenkins Subversion Plugin < 1.54 - Credential Disclosure via Base64-Encoded Storage
May 08, 2014
EPSS 0.00
CVE-2013-5676
Jenkins Plugin for SonarQube <= 3.7 - Authenticated Cleartext Password Exposure via sonar.sonarPassword Parameter
Dec 13, 2013
EPSS 0.05
CVE-2013-6373
Jenkins Exclusion Plugin < 0.9 - Authenticated Resource Lock Bypass
Nov 25, 2013
EPSS 0.01
CVE-2012-4441
MEDIUM
Jenkins < 1.482 and LTS < 1.466.2 - Cross-Site Scripting in CI Game Plugin
Nov 18, 2019
CVSS 6.1
EPSS 0.02
CVE-2012-4440
MEDIUM
Jenkins < 1.482 and LTS < 1.466.2 - Cross-Site Scripting in Violations Plugin
Nov 18, 2019
CVSS 6.1
EPSS 0.02
Products
script-security 35
git 13
email-ext 12
active-directory 11
config-file-provider 9
electricflow 9
credentials-binding 8
ec2 8
oic-auth 8
subversion 8
artifactory 7
htmlpublisher 7
jobConfigHistory 7
mercurial 7
openshift-deployer 7
rundeck 7
azure-ad 6
azure-vm-agents 6
ec2-deployment-dashboard 6
fortify-on-demand-uploader 6
ghprb 6
gitlab-oauth 6
gitlab-plugin 6
pipeline-maven 6
repository-connector 6
aws-codecommit-trigger 5
codedx 5
credentials 5
delphix 5
extended-choice-parameter 5
Quick Filters