Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

18 matches found

EUVD
EUVDadded 2025/10/03 8:7 p.m.3 views

EUVD-2022-4693

Malicious code in bioql PyPI...

4.3CVSS5AI score0.00024EPSS
Exploits0References5
EUVD
EUVDadded 2025/10/03 8:7 p.m.4 views

EUVD-2022-0656

Malicious code in bioql PyPI...

5.4CVSS5.5AI score0.00241EPSS
Exploits0References5
RedhatCVE
RedhatCVEadded 2025/05/22 3:18 p.m.2 views

CVE-2020-2156

Jenkins DeployHub Plugin 8.0.14 and earlier transmits configured credentials in plain text as part of job configuration forms, potentially resulting in their exposure...

4.3CVSS6.8AI score0.00024EPSS
Exploits0
CNNVD
CNNVDadded 2023/12/13 12:0 a.m.3 views

Jenkins PaaSLane Estimate Plugin Security Vulnerability

Jenkins and Jenkins Plugin are both Jenkins open source products.Jenkins is a software application . An open source automation server Jenkins provides hundreds of plugins to support building, deploying, and automating any project.Jenkins Plugin is a software application. A security vulnerability...

4.3CVSS6.9AI score0.00032EPSS
Exploits0References4
CNNVD
CNNVDadded 2023/05/16 12:0 a.m.3 views

Jenkins NS-ND Integration Performance Publisher Plugin 安全漏洞

Jenkins and Jenkins Plugin are both Jenkins open source products.Jenkins is a software application . An open source automation server Jenkins provides hundreds of plugins to support building, deploying, and automating any project.Jenkins Plugin is a software application. A security vulnerability...

7.5CVSS7.3AI score0.00471EPSS
Exploits0References4
CNNVD
CNNVDadded 2023/05/16 12:0 a.m.3 views

Jenkins Code Dx Plugin 安全漏洞

Jenkins and Jenkins Plugin are both Jenkins open source products.Jenkins is a software application . An open source automation server Jenkins provides hundreds of plugins to support building, deploying, and automating any project.Jenkins Plugin is a software application. A security vulnerability...

4.3CVSS5.2AI score0.00306EPSS
Exploits0References4
CNNVD
CNNVDadded 2023/04/12 12:0 a.m.2 views

Jenkins Plugin Report Portal 安全漏洞

Jenkins and Jenkins Plugin are both Jenkins open source products.Jenkins is a software application . An open source automation server Jenkins provides hundreds of plugins to support building, deploying, and automating any project.Jenkins Plugin is a software application. A security vulnerability...

4.3CVSS5.2AI score0.00292EPSS
Exploits0References4
SUSE CVE
SUSE CVEadded 2023/02/15 4:8 a.m.3 views

SUSE CVE-2019-16545

Jenkins QMetry for JIRA - Test Management Plugin transmits credentials in its configuration in plain text as part of job configuration forms, potentially resulting in their exposure...

6.5CVSS6.6AI score0.00128EPSS
Exploits0References3
Check Point Advisories
Check Point Advisoriesadded 2022/11/24 12:0 a.m.8 views

Jenkins Scriptler Plugin Cross-Site Scripting (CVE-2021-21667)

A stored cross-site scripting vulnerability exists in Jenkins Scriptler Plugin. This vulnerability is due to insufficient escaping of parameter names shown in job configuration forms...

3.5CVSS1.6AI score0.00241EPSS
Exploits0
Github Security Blog
Github Security Blogadded 2022/07/01 12:1 a.m.30 views

Jenkins OpsGenie Plugin vulnerable to Cleartext Transmission of Sensitive Information

Jenkins OpsGenie Plugin 1.9 and earlier stores API keys unencrypted in its global configuration file com.opsgenie.integration.jenkins.OpsGenieNotifier.xml and in job config.xml files on the Jenkins controller as part of its configuration. Additionally, they are transmitted in plain text as part o...

4.3CVSS4.8AI score0.00208EPSS
Exploits0References3Affected Software1
Cvelist
Cvelistadded 2022/06/30 5:48 p.m.13 views

CVE-2022-34804

Jenkins OpsGenie Plugin 1.9 and earlier transmits API keys in plain text as part of the global Jenkins configuration form and job configuration forms, potentially resulting in their exposure...

5.3AI score0.00208EPSS
Exploits0References1
Positive Technologies
Positive Technologiesadded 2022/06/30 12:0 a.m.1 views

PT-2022-22355 · Jenkins · Jenkins Opsgenie Plugin +1

Name of the Vulnerable Software and Affected Versions: Jenkins OpsGenie Plugin versions 1.9 and earlier Description: The issue concerns the storage of API keys in an unencrypted manner within the global configuration file and job config.xml files on the Jenkins controller. These keys can be...

4.3CVSS4.2AI score0.00335EPSS
Exploits0References5
Positive Technologies
Positive Technologiesadded 2021/06/16 12:0 a.m.4 views

PT-2021-14710 · Jenkins · Jenkins Scriptler Plugin +1

Name of the Vulnerable Software and Affected Versions: Jenkins Scriptler Plugin versions 3.2 and earlier Description: The issue results in a stored cross-site scripting XSS vulnerability. This is due to the plugin not escaping parameter names shown in job configuration forms. Attackers with...

5.4CVSS5.2AI score0.00241EPSS
Exploits0References6
Positive Technologies
Positive Technologiesadded 2020/03/09 12:0 a.m.4 views

PT-2020-15370 · Jenkins · Jenkins Backlog Plugin +1

Name of the Vulnerable Software and Affected Versions: Jenkins Backlog Plugin versions 2.4 and earlier Description: The issue concerns the transmission of configured credentials in plain text as part of job configuration forms, potentially resulting in their exposure. Credentials are stored...

4.3CVSS4.2AI score0.00024EPSS
Exploits0References8
NVD
NVDadded 2019/11/21 3:15 p.m.13 views

CVE-2019-16545

Jenkins QMetry for JIRA - Test Management Plugin transmits credentials in its configuration in plain text as part of job configuration forms, potentially resulting in their exposure...

6.5CVSS6.6AI score0.00128EPSS
Exploits0References2
Positive Technologies
Positive Technologiesadded 2019/10/01 12:0 a.m.2 views

PT-2019-11829 · Sourcegear +1 · Jenkins Sourcegear Vault Plugin +1

Name of the Vulnerable Software and Affected Versions: Jenkins SourceGear Vault Plugin affected versions not specified Description: The Jenkins SourceGear Vault Plugin transmits configured credentials in plain text as part of job configuration forms, potentially resulting in their exposure. There...

7.5CVSS7.4AI score0.00049EPSS
Exploits0References5
NVD
NVDadded 2019/06/11 2:29 p.m.10 views

CVE-2019-10336

A reflected cross site scripting vulnerability in Jenkins ElectricFlow Plugin 1.1.6 and earlier allowed attackers able to control the output of the ElectricFlow API to inject arbitrary HTML and JavaScript in job configuration forms containing post-build steps provided by this plugin...

6.1CVSS6AI score0.00061EPSS
Exploits0References3
Positive Technologies
Positive Technologiesadded 2019/06/11 12:0 a.m.2 views

PT-2019-11736 · Jenkins +1 · Jenkins Electricflow Plugin +2

Name of the Vulnerable Software and Affected Versions: Jenkins ElectricFlow Plugin version 1.1.6 and earlier CloudBees CD Plugin affected versions not specified Description: A reflected cross-site scripting issue allows attackers to inject arbitrary HTML and JavaScript into job configuration form...

6.1CVSS5.9AI score0.00061EPSS
Exploits0References8
Rows per page
Query Builder