Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

533 matches found

OSV
OSVadded 2020/02/12 3:15 p.m.14 views

CVE-2020-2126

Jenkins DigitalOcean Plugin 1.1 and earlier stores a token unencrypted in the global config.xml file on the Jenkins master where it can be viewed by users with access to the master file system...

4.3CVSS6.7AI score
Exploits0References2
NVD
NVDadded 2020/02/12 3:15 p.m.13 views

CVE-2020-2126

Jenkins DigitalOcean Plugin 1.1 and earlier stores a token unencrypted in the global config.xml file on the Jenkins master where it can be viewed by users with access to the master file system...

4.3CVSS4.5AI score0.00031EPSS
Exploits0References2
NVD
NVDadded 2020/02/12 3:15 p.m.8 views

CVE-2020-2133

Jenkins Applatix Plugin 1.1 and earlier stores a password unencrypted in job config.xml files on the Jenkins master where it can be viewed by users with Extended Read permission, or access to the master file system...

6.5CVSS6.5AI score0.00047EPSS
Exploits0References2
OSV
OSVadded 2020/02/12 3:15 p.m.12 views

CVE-2020-2133

Jenkins Applatix Plugin 1.1 and earlier stores a password unencrypted in job config.xml files on the Jenkins master where it can be viewed by users with Extended Read permission, or access to the master file system...

6.5CVSS6.8AI score
Exploits0References2
NVD
NVDadded 2020/02/12 3:15 p.m.9 views

CVE-2020-2131

Jenkins Harvest SCM Plugin 0.5.1 and earlier stores passwords unencrypted in job config.xml files on the Jenkins master where they can be viewed by users with Extended Read permission, or access to the master file system...

6.5CVSS6.4AI score0.00047EPSS
Exploits0References2
OSV
OSVadded 2020/02/12 3:15 p.m.13 views

CVE-2020-2131

Jenkins Harvest SCM Plugin 0.5.1 and earlier stores passwords unencrypted in job config.xml files on the Jenkins master where they can be viewed by users with Extended Read permission, or access to the master file system...

6.5CVSS6.7AI score
Exploits0References2
OSV
OSVadded 2020/02/12 3:15 p.m.16 views

CVE-2020-2124

Jenkins Dynamic Extended Choice Parameter Plugin 1.0.1 and earlier stores a password unencrypted in job config.xml files on the Jenkins master where it can be viewed by users with Extended Read permission, or access to the master file system...

4.3CVSS6.8AI score
Exploits0References2
NVD
NVDadded 2020/02/12 3:15 p.m.11 views

CVE-2020-2124

Jenkins Dynamic Extended Choice Parameter Plugin 1.0.1 and earlier stores a password unencrypted in job config.xml files on the Jenkins master where it can be viewed by users with Extended Read permission, or access to the master file system...

4.3CVSS4.6AI score0.00031EPSS
Exploits0References2
Prion
Prionadded 2020/02/12 3:15 p.m.22 views

Design/Logic Flaw

Jenkins ECX Copy Data Management Plugin 1.9 and earlier stores a password unencrypted in job config.xml files on the Jenkins master where it can be viewed by users with Extended Read permission, or access to the master file system...

4CVSS4.6AI score0.00031EPSS
Exploits0References2Affected Software1
Prion
Prionadded 2020/02/12 3:15 p.m.15 views

Design/Logic Flaw

Jenkins Parasoft Environment Manager Plugin 2.14 and earlier stores a password unencrypted in job config.xml files on the Jenkins master where it can be viewed by users with Extended Read permission, or access to the master file system...

4CVSS6.4AI score0.00047EPSS
Exploits0References2Affected Software1
Prion
Prionadded 2020/02/12 3:15 p.m.13 views

Design/Logic Flaw

Jenkins Harvest SCM Plugin 0.5.1 and earlier stores passwords unencrypted in job config.xml files on the Jenkins master where they can be viewed by users with Extended Read permission, or access to the master file system...

4CVSS6.4AI score0.00047EPSS
Exploits0References2Affected Software1
Prion
Prionadded 2020/02/12 3:15 p.m.11 views

Design/Logic Flaw

Jenkins DigitalOcean Plugin 1.1 and earlier stores a token unencrypted in the global config.xml file on the Jenkins master where it can be viewed by users with access to the master file system...

4CVSS4.5AI score0.00031EPSS
Exploits0References2Affected Software1
Prion
Prionadded 2020/02/12 3:15 p.m.11 views

Design/Logic Flaw

Jenkins Applatix Plugin 1.1 and earlier stores a password unencrypted in job config.xml files on the Jenkins master where it can be viewed by users with Extended Read permission, or access to the master file system...

4CVSS6.4AI score0.00047EPSS
Exploits0References2Affected Software1
Cvelist
Cvelistadded 2020/02/12 2:35 p.m.13 views

CVE-2020-2131

Jenkins Harvest SCM Plugin 0.5.1 and earlier stores passwords unencrypted in job config.xml files on the Jenkins master where they can be viewed by users with Extended Read permission, or access to the master file system...

6.4AI score0.00047EPSS
Exploits0References2
Cvelist
Cvelistadded 2020/02/12 2:35 p.m.15 views

CVE-2020-2124

Jenkins Dynamic Extended Choice Parameter Plugin 1.0.1 and earlier stores a password unencrypted in job config.xml files on the Jenkins master where it can be viewed by users with Extended Read permission, or access to the master file system...

4.6AI score0.00031EPSS
Exploits0References2
Positive Technologies
Positive Technologiesadded 2020/02/12 12:0 a.m.4 views

PT-2020-15337 · Jenkins · Jenkins Ecx Copy Data Management Plugin +1

Name of the Vulnerable Software and Affected Versions: Jenkins ECX Copy Data Management Plugin versions 1.9 and earlier Description: The issue allows users with Extended Read permission, or access to the master file system, to view a password stored unencrypted in job config.xml files on the...

4.3CVSS4.4AI score0.00031EPSS
Exploits0References7
Positive Technologies
Positive Technologiesadded 2020/02/12 12:0 a.m.4 views

PT-2020-15334 · Jenkins · Jenkins Digitalocean Plugin +1

Name of the Vulnerable Software and Affected Versions: Jenkins DigitalOcean Plugin version 1.1 and earlier Description: The issue concerns the storage of a token in an unencrypted form within the global config.xml file on the Jenkins master. This token can be accessed by users who have permission...

4.3CVSS4.4AI score0.00031EPSS
Exploits0References8
AlpineLinux
AlpineLinuxadded 2020/01/29 3:15 p.m.37 views

CVE-2020-2107

Jenkins Fortify Plugin 19.1.29 and earlier stores proxy server passwords unencrypted in job config.xml files on the Jenkins master where they can be viewed by users with Extended Read permission, or access to the master file system...

4.3CVSS3AI score0.00031EPSS
Exploits0References2
Positive Technologies
Positive Technologiesadded 2020/01/29 12:0 a.m.4 views

PT-2020-15314 · Jenkins · Jenkins Fortify Plugin +1

Name of the Vulnerable Software and Affected Versions: Jenkins Fortify Plugin versions 19.1.29 and earlier Description: The issue concerns the storage of proxy server passwords in an unencrypted manner within job config.xml files on the Jenkins master. These passwords can be accessed by users who...

4.3CVSS4.4AI score0.00031EPSS
Exploits0References6
Cvelist
Cvelistadded 2020/01/15 3:15 p.m.10 views

CVE-2020-2095

Jenkins Redgate SQL Change Automation Plugin 2.0.4 and earlier stored an API key unencrypted in job config.xml files on the Jenkins master where they could be viewed by users with Extended Read permission, or access to the master file system...

4.9AI score0.00031EPSS
Exploits0References1
Rows per page
Query Builder