CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

23 matches found

RedhatCVE•added 2026/03/26 3:16 p.m.•1 views

CVE-2026-33003

Jenkins LoadNinja Plugin 2.1 and earlier stores LoadNinja API keys unencrypted in job config.xml files on the Jenkins controller where they can be viewed by users with Item/Extended Read permission or access to the Jenkins controller file system...

4.3CVSS5.8AI score0.0004EPSS

Exploits0References1

RedhatCVE•added 2026/03/26 3:16 p.m.•2 views

CVE-2026-33004

Jenkins LoadNinja Plugin 2.1 and earlier does not mask LoadNinja API keys displayed on the job configuration form, increasing the potential for attackers to observe and capture them...

4.3CVSS5.8AI score0.00041EPSS

Exploits0References1

EUVD•added 2026/03/18 6:31 p.m.•3 views

EUVD-2026-12849

Jenkins LoadNinja Plugin 2.1 and earlier does not mask LoadNinja API keys displayed on the job configuration form, increasing the potential for attackers to observe and capture them...

5.8AI score0.00041EPSS

Exploits0References2

OSV•added 2026/03/18 6:31 p.m.•2 views

GHSA-QQJR-HF5H-JX3Q Jenkins LoadNinja Plugin stores LoadNinja API keys unencrypted in job config.xml files

4.3CVSS5.8AI score0.0004EPSS

Exploits0References3

OSV•added 2026/03/18 6:31 p.m.•2 views

GHSA-P9HG-WRMV-V8CP Jenkins LoadNinja Plugin does not mask LoadNinja API keys displayed on the job configuration form

Jenkins LoadNinja Plugin 2.1 and earlier does not mask LoadNinja API keys displayed on the job configuration form, increasing the potential for attackers to observe and capture them...

4.3CVSS5.8AI score0.00041EPSS

Exploits0References3

Github Security Blog•added 2026/03/18 6:31 p.m.•4 views

Jenkins LoadNinja Plugin stores LoadNinja API keys unencrypted in job config.xml files

4.3CVSS5.8AI score0.0004EPSS

Exploits0References3Affected Software1

EUVD•added 2026/03/18 6:31 p.m.•3 views

EUVD-2026-12847

4.3CVSS5.8AI score0.0004EPSS

Exploits0References2

Github Security Blog•added 2026/03/18 6:31 p.m.•5 views

Jenkins LoadNinja Plugin does not mask LoadNinja API keys displayed on the job configuration form

Jenkins LoadNinja Plugin 2.1 and earlier does not mask LoadNinja API keys displayed on the job configuration form, increasing the potential for attackers to observe and capture them...

4.3CVSS5.8AI score0.00041EPSS

Exploits0References3Affected Software1

NVD•added 2026/03/18 4:16 p.m.•2 views

CVE-2026-33004

Jenkins LoadNinja Plugin 2.1 and earlier does not mask LoadNinja API keys displayed on the job configuration form, increasing the potential for attackers to observe and capture them...

4.3CVSS0.00041EPSS

Exploits0References1

NVD•added 2026/03/18 4:16 p.m.•3 views

CVE-2026-33003

4.3CVSS0.0004EPSS

Exploits0References1

CVE•added 2026/03/18 3:15 p.m.•15 views

CVE-2026-33004

The CVE-2026-33004 issue affects Jenkins LoadNinja Plugin 2.1 and earlier. The vulnerability is that LoadNinja API keys displayed on the job configuration form are not masked, enabling potential observers to see and capture them. Affected component: LoadNinja API key display within the plugin con...

4.3CVSS5.8AI score0.00041EPSS

Exploits0References1Affected Software1

ATTACKERKB•added 2026/03/18 3:15 p.m.•3 views

CVE-2026-33004

Jenkins LoadNinja Plugin 2.1 and earlier does not mask LoadNinja API keys displayed on the job configuration form, increasing the potential for attackers to observe and capture them...

5.8AI score0.00041EPSS

Exploits0References2

Cvelist•added 2026/03/18 3:15 p.m.•9 views

CVE-2026-33004

Jenkins LoadNinja Plugin 2.1 and earlier does not mask LoadNinja API keys displayed on the job configuration form, increasing the potential for attackers to observe and capture them...

0.00041EPSS

Exploits0References1

Vulnrichment•added 2026/03/18 3:15 p.m.•1 views

CVE-2026-33004

Jenkins LoadNinja Plugin 2.1 and earlier does not mask LoadNinja API keys displayed on the job configuration form, increasing the potential for attackers to observe and capture them...

5.8AI score0.00041EPSS

Exploits0References1

Vulnrichment•added 2026/03/18 3:15 p.m.•2 views

CVE-2026-33003

5.8AI score0.0004EPSS

Exploits0References1

Cvelist•added 2026/03/18 3:15 p.m.•17 views

CVE-2026-33003

0.0004EPSS

Exploits0References1

CVE•added 2026/03/18 3:15 p.m.•11 views

CVE-2026-33003

CVE-2026-33003 affects Jenkins LoadNinja Plugin versions 2.1 and earlier. The underlying issue is that LoadNinja API keys are stored unencrypted in job config.xml files on the Jenkins controller. This can allow disclosure to users with Item/Extended Read permissions or anyone with access to the J...

4.3CVSS5.8AI score0.0004EPSS

Exploits0References1Affected Software1

ATTACKERKB•added 2026/03/18 3:15 p.m.•2 views

CVE-2026-33003

4.3CVSS5.8AI score0.0004EPSS

Exploits0References2

CNNVD•added 2026/03/18 12:0 a.m.•4 views

Jenkins LoadNinja Plugin 安全漏洞

The Jenkins LoadNinja Plugin is an open-source plugin developed by Jenkins. The Jenkins LoadNinja Plugin versions 2.1 and earlier contain security vulnerabilities. These vulnerabilities stem from the API keys not being shielded in the configuration form, which may lead to credential leaks...

4.3CVSS5.8AI score0.00041EPSS

Exploits0References1

CNNVD•added 2026/03/18 12:0 a.m.•2 views

Jenkins LoadNinja Plugin 安全漏洞

The Jenkins LoadNinja Plugin is an open-source plugin developed by Jenkins. The Jenkins LoadNinja Plugin versions 2.1 and earlier contain security vulnerabilities. These vulnerabilities stem from the insecure storage of API keys, which may lead to credential leaks...

4.3CVSS5.8AI score0.0004EPSS

Exploits0References1

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by