org.jenkins-ci.plugins

1,035 tracked vulnerabilities.

CVE-2017-1000085 MEDIUM
Subversion Plugin - Info Disclosure
Oct 05, 2017
CVSS 6.5
EPSS 0.01
CVE-2017-1000084 MEDIUM
Jenkins Parameterized Trigger Plugin - Unauthenticated Arbitrary Project Triggering
Oct 05, 2017
CVSS 6.5
EPSS 0.01
CVE-2016-3102 HIGH
Jenkins Script Security Plugin < 1.18.1 - Sandbox Bypass via Direct Field Access or Array Operations
Feb 09, 2017
CVSS 7.3
EPSS 0.02
CVE-2016-3101 MEDIUM
Jenkins Extra Columns < 1.17 - Cross-Site Scripting via Unfiltered Tooltip Markup
Feb 09, 2017
CVSS 5.4
EPSS 0.01
CVE-2015-5298 MEDIUM
Google Login Plugin <1.2 - Auth Bypass
Jul 07, 2022
CVSS 6.5
EPSS 0.01
CVE-2013-6372
Jenkins Subversion Plugin < 1.54 - Credential Disclosure via Base64-Encoded Storage
May 08, 2014
EPSS 0.00
CVE-2013-5676
Jenkins Plugin for SonarQube <= 3.7 - Authenticated Cleartext Password Exposure via sonar.sonarPassword Parameter
Dec 13, 2013
EPSS 0.05
CVE-2013-6373
Jenkins Exclusion Plugin < 0.9 - Authenticated Resource Lock Bypass
Nov 25, 2013
EPSS 0.01
CVE-2012-4441 MEDIUM
Jenkins < 1.482 and LTS < 1.466.2 - Cross-Site Scripting in CI Game Plugin
Nov 18, 2019
CVSS 6.1
EPSS 0.02
CVE-2012-4440 MEDIUM
Jenkins < 1.482 and LTS < 1.466.2 - Cross-Site Scripting in Violations Plugin
Nov 18, 2019
CVSS 6.1
EPSS 0.02