CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

275 matches found

CVE-2026-57286

A missing permission check in Jenkins Git Parameter Plugin 462.vdcf3df2ed2ca and earlier allows attackers with Item/Read permission to obtain information about the SCM repository used by a job, such as branch names, tag names, and revision metadata...

4.3CVSS0.00207EPSS

Exploits0References1

Cvelist•added 2 days ago•31 views

CVE-2026-57286

0.00207EPSS

Exploits0References1

EUVD•added 2 days ago•7 views

EUVD-2026-38766

4.3CVSS5.9AI score0.00207EPSS

Exploits0References1

CVE•added 2 days ago•6 views

CVE-2026-57286

CVE-2026-57286 describes a missing permission check in the Jenkins Git Parameter Plugin (462.vdcf3df2ed2ca_ and earlier). This allows users with Item/Read permission to obtain information about the SCM repository used by a job (e.g., branch names, tag names, and revision metadata). The impact is ...

4.3CVSS5.9AI score0.00207EPSS

Exploits0References1Affected Software1

vulnersOsv•added 2025/12/10 6:30 p.m.•7 views

ColumnPack:ColumnPack-plugin (=1.0.3), CustomHistory:CustomHistory (>=1.1 <=1.3) +1886 more potentially affected by CVE-2025-67635 via org.jenkins-ci.main:cli (>=1.396 <=2.528.2)

org.jenkins-ci.main:cli MAVEN version =1.396, =1.1, =0.0.1, =1.0, =55.v51410e712e0c, =1.0, =0.0.1, =0.1.0, =1.0, =0.9, =1.3, =1.23 and more Source cves: CVE-2025-67635 Source advisory: OSV:GHSA-9P56-P6MW-W8QC...

7.5CVSS7.5AI score0.00506EPSS

Exploits0

NVD•added 2025/10/29 2:15 p.m.•2 views

CVE-2025-64133

A cross-site request forgery CSRF vulnerability in Jenkins Extensible Choice Parameter Plugin 239.v5f5c278708cf and earlier allows attackers to execute sandboxed Groovy code...

5.4CVSS0.0021EPSS

Exploits0References2

CNNVD•added 2025/10/29 12:0 a.m.•4 views

Jenkins Extensible Choice Parameter Plugin 安全漏洞

Jenkins Extensible Choice Parameter Plugin is an open source parameter building plugin for Jenkins. A security vulnerability exists in Jenkins Extensible Choice Parameter Plugin 239.v5f5c278708cf and prior versions, which stems from vulnerability to a cross-site request forgery attack that could...

5.4CVSS6.6AI score0.0021EPSS

Exploits0References2

Positive Technologies•added 2025/10/29 12:0 a.m.•3 views

PT-2025-44282

Name of the Vulnerable Software and Affected Versions Jenkins Extensible Choice Parameter Plugin versions 239.v5f5c278708cf and earlier Description A cross-site request forgery CSRF issue exists in the Jenkins Extensible Choice Parameter Plugin. This allows attackers to execute sandboxed Groovy...

5.4CVSS6.7AI score0.0021EPSS

Exploits0References8

EUVD•added 2025/10/03 8:7 p.m.•5 views

EUVD-2022-2970