Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

134 matches found

CVE
CVEadded 2026/05/27 2:13 p.m.10 views

CVE-2026-48923

Jenkins AppSpider Plugin 1.0.17 and earlier is affected by a permission-check bypass in a form-validation method. The issue allows attackers with Overall/Read permissions to connect to an attacker-specified URL, enabling potential external requests from the plugin context. The affected component ...

4.3CVSS5.8AI score0.00021EPSS
Exploits0References1Affected Software1
RedhatCVE
RedhatCVEadded 2026/01/09 12:16 p.m.4 views

CVE-2018-1000603

A exposure of sensitive information vulnerability exists in Jenkins Openstack Cloud Plugin 2.35 and earlier in BootSource.java, InstancesToRun.java, JCloudsCleanupThread.java, JCloudsCloud.java, JCloudsComputer.java, JCloudsPreCreationThread.java, JCloudsRetentionStrategy.java, JCloudsSlave.java,...

8.8CVSS6.1AI score0.00107EPSS
Exploits0References1
RedhatCVE
RedhatCVEadded 2026/01/07 9:49 a.m.4 views

CVE-2022-27204

A cross-site request forgery vulnerability in Jenkins Extended Choice Parameter Plugin 346.vd87693c5a86c and earlier allows attackers to connect to an attacker-specified URL...

8.8CVSS6.6AI score0.00083EPSS
Exploits0References1
RedhatCVE
RedhatCVEadded 2026/01/07 9:33 a.m.2 views

CVE-2019-16565

A cross-site request forgery vulnerability in Jenkins Team Concert Plugin 1.3.0 and earlier allows attackers to connect to an attacker-specified URL using attacker-specified credentials IDs obtained through another method, capturing credentials stored in Jenkins...

8.8CVSS6.5AI score0.00103EPSS
Exploits0References1
RedhatCVE
RedhatCVEadded 2026/01/07 9:30 a.m.6 views

CVE-2019-16573

A cross-site request forgery vulnerability in Jenkins Alauda DevOps Pipeline Plugin 2.3.2 and earlier allows attackers to connect to an attacker-specified URL using attacker-specified credentials IDs obtained through another method, capturing credentials stored in Jenkins...

8.8CVSS6.5AI score0.0011EPSS
Exploits0References1
CVE
CVEadded 2025/10/29 1:29 p.m.402 views

CVE-2025-64149

CVE-2025-64149 involves the Jenkins Publish to Bitbucket Plugin (versions 0.4 and earlier) with a CSRF vulnerability via an HTTP endpoint. An attacker with Overall/Read permission can initiate requests to an attacker-controlled URL using credentials IDs obtained through other means, potentially c...

5.4CVSS6.3AI score0.00026EPSS
Exploits0References2Affected Software1
CVE
CVEadded 2025/10/29 1:29 p.m.6 views

CVE-2025-64138

The CVE-2025-64138 entry concerns Jenkins Start Windocks Containers Plugin (versions 1.4 and earlier). The issue is a CSRF vulnerability in an HTTP endpoint that allows attackers with Overall/Read permission to trigger connections to an attacker-specified URL, even without POST requests. Multiple...

4.3CVSS6.4AI score0.00019EPSS
Exploits0References2Affected Software1
EUVD
EUVDadded 2025/10/03 8:7 p.m.0 views

EUVD-2022-5257

Malicious code in bioql PyPI...

4.3CVSS4.8AI score0.00253EPSS
Exploits0References4
EUVD
EUVDadded 2025/10/03 8:7 p.m.2 views

EUVD-2022-3266

Malicious code in bioql PyPI...

8.8CVSS8.4AI score0.00067EPSS
Exploits0References4
EUVD
EUVDadded 2025/10/03 8:7 p.m.2 views

EUVD-2022-6153

Malicious code in bioql PyPI...

6.5CVSS6.4AI score0.00068EPSS
Exploits0References3
EUVD
EUVDadded 2025/10/03 8:7 p.m.2 views

EUVD-2022-5774

Malicious code in bioql PyPI...

6.5CVSS6.5AI score0.00047EPSS
Exploits0References5
EUVD
EUVDadded 2025/10/03 8:7 p.m.2 views

EUVD-2022-7183

Malicious code in bioql PyPI...

4.3CVSS4.9AI score0.00091EPSS
Exploits0References5
EUVD
EUVDadded 2025/10/03 8:7 p.m.0 views

EUVD-2022-2687

Malicious code in bioql PyPI...

8.8CVSS8.4AI score0.00093EPSS
Exploits0References5
EUVD
EUVDadded 2025/10/03 8:7 p.m.3 views

EUVD-2022-2703

Malicious code in bioql PyPI...

4.3CVSS5.1AI score0.0062EPSS
Exploits0References5
EUVD
EUVDadded 2025/10/03 8:7 p.m.1 views

EUVD-2023-2194

Malicious code in bioql PyPI...

5.4CVSS5.6AI score0.00214EPSS
Exploits0References4
EUVD
EUVDadded 2025/10/03 8:7 p.m.1 views

EUVD-2022-6165

Malicious code in bioql PyPI...

6.5CVSS6.4AI score0.00063EPSS
Exploits0References3
EUVD
EUVDadded 2025/10/03 8:7 p.m.2 views

EUVD-2023-2170

Malicious code in bioql PyPI...

6.5CVSS6.5AI score0.00066EPSS
Exploits0References3
EUVD
EUVDadded 2025/10/03 8:7 p.m.2 views

EUVD-2022-3546

Malicious code in bioql PyPI...

6.5CVSS6.6AI score0.00048EPSS
Exploits0References4
EUVD
EUVDadded 2025/10/03 8:7 p.m.3 views

EUVD-2022-2866

Malicious code in bioql PyPI...

6.5CVSS6.6AI score0.00094EPSS
Exploits0References5
EUVD
EUVDadded 2025/10/03 8:7 p.m.1 views

EUVD-2022-6130

Malicious code in bioql PyPI...

6.5CVSS6.4AI score0.00063EPSS
Exploits0References3
Rows per page
Query Builder