Filter
-Infinity
0

Jenkins Simple Queue PluginCSRF

First published (updated )

Jenkins Templating Engine PluginCode Injection

8.8
First published (updated )

Jenkins LTSA missing permission check in Jenkins 2.503 and earlier, LTS 2.492.2 and earlier allows attackers wi…

First published (updated )

Jenkins LTSA missing permission check in Jenkins 2.503 and earlier, LTS 2.492.2 and earlier allows attackers wi…

First published (updated )

Multiple vulnerabilities in Jenkins and Jenkins plugins

First published (updated )

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Jenkins AsakusaSatellite PluginJenkins AsakusaSatellite Plugin 0.1.1 and earlier does not mask AsakusaSatellite API keys displayed …

First published (updated )

Jenkins monitor-remote-job PluginJenkins monitor-remote-job Plugin 1.0 stores passwords unencrypted in job config.xml files on the Je…

First published (updated )

Jenkins Stack Hammer PluginJenkins Stack Hammer Plugin 1.0.6 and earlier stores Stack Hammer API keys unencrypted in job config…

First published (updated )

Jenkins AsakusaSatellite PluginJenkins AsakusaSatellite Plugin 0.1.1 and earlier stores AsakusaSatellite API keys unencrypted in jo…

First published (updated )

Cadence vManager PluginJenkins Cadence vManager Plugin 4.0.0-282.v5096a_c2db_275 and earlier stores Verisium Manager vAPI k…

First published (updated )

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Jenkins Semantic VersioningXEE

First published (updated )

Jenkins Semantic VersioningXEE

First published (updated )

Jenkins Bitbucket OAuthCSRF

First published (updated )

maven/io.jenkins.plugins:macstadium-orkaCSRF

8.8
First published (updated )

maven/io.jenkins.plugins:macstadium-orkaA missing permission check in Jenkins Orka by MacStadium Plugin 1.31 and earlier allows attackers wi…

First published (updated )

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Jenkins Bitbucket OAuthJenkins Bitbucket OAuth Plugin 0.12 and earlier does not invalidate the previous session on login.

First published (updated )

redhat/jenkinsOS Command Injection, Input Validation

8.8
First published (updated )

maven/com.sonyericsson.hudson.plugins.gerrit:gerrit-triggerCSRF

First published (updated )

Jenkins Kubernetes Credentials ProviderJenkins Kubernetes Credentials Provider Plugin 1.208.v128ee9800c04 and earlier does not set the appr…

First published (updated )

Jenkins OpenId Connect Authentication PluginJenkins OpenId Connect Authentication Plugin 2.4 and earlier does not invalidate the previous sessio…

8.8
First published (updated )

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Jenkins Visual ExpertPath Traversal

First published (updated )

maven/org.jenkins-ci.plugins:keycloakCSRF

First published (updated )

Jenkins BearychatCSRF

8.8
First published (updated )

maven/org.jenkins-ci.plugins:keycloakJenkins Keycloak Authentication Plugin 2.3.0 and earlier does not invalidate the previous session on…

First published (updated )

Jenkins View-clonerJenkins view-cloner Plugin 1.1 and earlier stores passwords unencrypted in job config.xml files on t…

First published (updated )

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Jenkins Pwauth Security RealmPath Traversal

First published (updated )

Jenkins Testquality UpdaterA missing check in Jenkins TestQuality Updater Plugin 1.3 and earlier allows attackers with Overall/…

First published (updated )

Jenkins Testquality UpdaterCSRF

8.8
First published (updated )

Jenkins Testquality UpdaterJenkins TestQuality Updater Plugin 1.3 and earlier stores the TestQuality Updater password unencrypt…

First published (updated )

RabbitMQCSRF

8.8
First published (updated )

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Contact

SecAlerts Pty Ltd.
132 Wickham Terrace
Fortitude Valley,
QLD 4006, Australia
info@secalerts.co
By using SecAlerts services, you agree to our services end-user license agreement. This website is safeguarded by reCAPTCHA and governed by the Google Privacy Policy and Terms of Service. All names, logos, and brands of products are owned by their respective owners, and any usage of these names, logos, and brands for identification purposes only does not imply endorsement. If you possess any content that requires removal, please get in touch with us.
© 2025 SecAlerts Pty Ltd.
ABN: 70 645 966 203, ACN: 645 966 203