Lucene search
K
JenkinsMost viewed

1464 matches found

Jenkins Security Advisories
Jenkins Security Advisories
added 2026/06/24 12:0 a.m.8 views

Missing permission check in git-parameter allows listing SCM branch and tag names

git-parameter 462.vdcf3df2ed2ca and earlier does not perform a permission check in an HTTP endpoint that populates the list of values for Git parameters by querying the SCM configured on a job, using the SCM credentials configured in Jenkins. This allows attackers with Item/Read permission to...

4.3CVSS5.9AI score0.00216EPSS
Exploits0Affected Software1
Jenkins Security Advisories
Jenkins Security Advisories
added 2026/03/18 12:0 a.m.8 views

DNS rebinding vulnerability in WebSocket CLI origin validation

Jenkins has a built-in command line interface CLI to access Jenkins from a script or shell environment. Since Jenkins 2.217 and LTS 2.222.1, one of the ways to communicate with the CLI is through a WebSocket endpoint. This endpoint relies on the default Jenkins web request authentication...

7.5CVSS6.1AI score0.00297EPSS
Exploits0Affected Software1
Jenkins Security Advisories
Jenkins Security Advisories
added 2025/12/10 12:0 a.m.8 views

CSRF vulnerability on the login form

Jenkins 2.540 and earlier, LTS 2.528.2 and earlier does not require a cross-site request forgery CSRF token crumb for the URL handling interactive login HTTP requests, resulting in a cross-site request forgery CSRF vulnerability. This vulnerability allows attackers to trick users into logging in ...

3.5CVSS7.5AI score0.0016EPSS
Exploits0Affected Software1
Jenkins Security Advisories
Jenkins Security Advisories
added 2025/12/10 12:0 a.m.8 views

Exposure of system-scoped Vault credentials in hashicorp-vault-plugin

hashicorp-vault-plugin 371.v884a4dd60fb6 and earlier does not set the appropriate context for Vault credentials lookup, allowing the use of System-scoped credentials otherwise reserved for the global configuration. This allows attackers with Item/Configure permission to access and potentially...

4.3CVSS5.2AI score0.00202EPSS
Exploits0Affected Software1
Jenkins Security Advisories
Jenkins Security Advisories
added 2025/12/10 12:0 a.m.8 views

Build authorization token stored and displayed in plain text

Jenkins 2.540 and earlier, LTS 2.528.2 and earlier stores build authorization tokens unencrypted in job config.xml files on the Jenkins controller. These tokens can be viewed by users with Item/Extended Read permission or access to the Jenkins controller file system. Additionally, the job...

4.3CVSS7.6AI score0.00159EPSS
Exploits0Affected Software1
Jenkins Security Advisories
Jenkins Security Advisories
added 2025/10/29 12:0 a.m.8 views

XXE vulnerability in jdepend

jdepend 1.3.1 and earlier includes an outdated version of JDepend Maven Plugin that does not configure its XML parser to prevent XML external entity XXE attacks. This allows attackers able to configure input files for the "Report JDepend" step to have Jenkins parse a crafted file that uses extern...

7.1CVSS5.4AI score0.0032EPSS
Exploits0Affected Software1
Jenkins Security Advisories
Jenkins Security Advisories
added 2025/10/29 12:0 a.m.8 views

API tokens stored in plain text by byteguard-build-actions

byteguard-build-actions 1.0 and earlier stores API tokens unencrypted in job config.xml files on the Jenkins controller as part of its configuration. These tokens can be viewed by users with Item/Extended Read permission or access to the Jenkins controller file system. Additionally, the job...

4.3CVSS5.3AI score0.00158EPSS
Exploits0Affected Software1
Jenkins Security Advisories
Jenkins Security Advisories
added 2025/07/09 12:0 a.m.8 views

API key stored in plain text by kryptowire

kryptowire 0.2 and earlier stores the Kryptowire API key unencrypted in its global configuration file org.aerogear.kryptowire.GlobalConfigurationImpl.xml on the Jenkins controller as part of its configuration. This API key can be viewed by users with access to the Jenkins controller file system. ...

6.5CVSS6.4AI score0.00259EPSS
Exploits0Affected Software1
Jenkins Security Advisories
Jenkins Security Advisories
added 2025/07/09 12:0 a.m.8 views

Passwords stored in plain text by warrior

warrior 1.2 and earlier stores passwords unencrypted in job config.xml files on the Jenkins controller as part of its configuration. These passwords can be viewed by users with Item/Extended Read permission or access to the Jenkins controller file system. As of publication of this advisory, there...

6.5CVSS6.4AI score0.00291EPSS
Exploits0Affected Software1
Jenkins Security Advisories
Jenkins Security Advisories
added 2025/07/09 12:0 a.m.8 views

API Auth keys stored and displayed in plain text by vaddy-plugin

vaddy-plugin 1.2.8 and earlier stores Vaddy API Auth Keys unencrypted in job config.xml files on the Jenkins controller as part of its configuration. These API keys can be viewed by users with Item/Extended Read permission or access to the Jenkins controller file system. Additionally, the job...

6.5CVSS5.6AI score0.00218EPSS
Exploits0Affected Software1
Jenkins Security Advisories
Jenkins Security Advisories
added 2025/06/06 12:0 a.m.8 views

XSS vulnerability in gatling

gatling 136.vb9009b3d33ae serves Gatling reports in a manner that bypasses the Content-Security-Policy protection introduced in Jenkins 1.641 and 1.625.3. This results in a cross-site scripting XSS vulnerability exploitable by users able to change report content. As of publication of this advisor...

8CVSS4.9AI score0.00444EPSS
Exploits0Affected Software1
Jenkins Security Advisories
Jenkins Security Advisories
added 2025/03/19 12:0 a.m.8 views

API key displayed without masking by zohoqengine

zohoqengine stores the QEngine API Key in job config.xml files on the Jenkins controller as part of its configuration. While this key is stored encrypted on disk, in zohoqengine 1.0.29.vfacc23396502 and earlier the job configuration form does not mask the QEngine API Key form field, increasing th...

3.1CVSS5.2AI score0.00261EPSS
Exploits0Affected Software1
Jenkins Security Advisories
Jenkins Security Advisories
added 2024/11/13 12:0 a.m.8 views

Missing permission check in script-security

script-security 1367.vdf2fc45f229c and earlier, except 1365.1367.va3bb89f8a95b and 1362.1364.v4cf2dc5d8776, does not perform a permission check in a method implementing form validation. This allows attackers with Overall/Read permission to check for the existence of files on the controller file...

4.3CVSS5AI score0.0036EPSS
Exploits0Affected Software1
Jenkins Security Advisories
Jenkins Security Advisories
added 2024/05/24 12:0 a.m.8 views

Path traversal vulnerability in report-info

report-info 1.2 and earlier does not perform path validation of the workspace directory while serving report files. Additionally, report-info does not support distributed builds. This results in a path traversal vulnerability, allowing attackers with Item/Configure permission to retrieve Surefire...

4.3CVSS5.1AI score0.00831EPSS
Exploits0Affected Software1
Jenkins Security Advisories
Jenkins Security Advisories
added 2024/05/24 12:0 a.m.8 views

Stored XSS vulnerability in teamconcert-git

teamconcert-git 2.0.4 and earlier does not escape the Rational Team Concert RTC server URI on the build page when showing changes. This results in a stored cross-site scripting XSS vulnerability exploitable by attackers able to configure jobs. teamconcert-git 2.0.5 escapes the Rational Team Conce...

8CVSS4.9AI score0.00327EPSS
Exploits0Affected Software1
Jenkins Security Advisories
Jenkins Security Advisories
added 2024/05/02 12:0 a.m.8 views

Missing permission check in git-server

git-server 114.v068ac7cc2574 and earlier does not perform a permission check for read access to a Git repository over SSH. This allows attackers with a previously configured SSH public key but lacking Overall/Read permission to access Git repositories. git-server 117.veb68868fa027 requires...

6.5CVSS6.4AI score0.00522EPSS
Exploits0Affected Software1
Jenkins Security Advisories
Jenkins Security Advisories
added 2024/01/24 12:0 a.m.8 views

CSRF vulnerability in gitlab-branch-source

gitlab-branch-source 684.veafa7c1e2fe3 and earlier does not require POST requests for a form validation endpoint, resulting in a cross-site request forgery CSRF vulnerability. This vulnerability allows attackers to connect to an attacker-specified URL. gitlab-branch-source 688.v5fa356ee8520...

4.3CVSS4.9AI score0.00323EPSS
Exploits0Affected Software1
Jenkins Security Advisories
Jenkins Security Advisories
added 2024/01/24 12:0 a.m.8 views

Stored XSS vulnerability in qualys-pc

qualys-pc 1.0.5 and earlier does not escape Qualys API responses displayed on the job configuration page. This results in a stored cross-site scripting XSS vulnerability exploitable by attackers able to configure jobs. qualys-pc 1.0.6 escapes Qualys API responses displayed on the job configuratio...

8CVSS5.3AI score0.00458EPSS
Exploits0Affected Software1
Jenkins Security Advisories
Jenkins Security Advisories
added 2023/12/13 12:0 a.m.8 views

Tokens stored and displayed in plain text by dingding-json-pusher

dingding-json-pusher 2.0 and earlier stores access tokens unencrypted in job config.xml files on the Jenkins controller as part of its configuration. These tokens can be viewed by users with Item/Extended Read permission or access to the Jenkins controller file system. Additionally, the job...

4.3CVSS5AI score0.00347EPSS
Exploits0Affected Software1
Jenkins Security Advisories
Jenkins Security Advisories
added 2023/11/29 12:0 a.m.8 views

CSRF vulnerabilities and missing permission checks in matlab allow XXE

matlab determines whether a user-specified directory on the Jenkins controller is the location of a MATLAB installation by parsing an XML file in that directory. matlab 2.11.0 and earlier does not perform permission checks in several HTTP endpoints implementing related form validation...

9.8CVSS8.3AI score0.00844EPSS
Exploits0Affected Software1
Jenkins Security Advisories
Jenkins Security Advisories
added 2023/10/25 12:0 a.m.8 views

Missing permission check in lambdatest-automation allows enumerating credentials IDs

lambdatest-automation 1.20.9 and earlier does not perform a permission check in an HTTP endpoint. This allows attackers with Overall/Read permission to enumerate credentials IDs of LAMBDATEST credentials stored in Jenkins. Those can be used as part of an attack to capture the credentials using...

4.3CVSS5.1AI score0.00394EPSS
Exploits0Affected Software1
Jenkins Security Advisories
Jenkins Security Advisories
added 2023/10/25 12:0 a.m.8 views

Arbitrary file read vulnerability in electricflow

electricflow temporarily copies files from an agent workspace to the controller in preparation for publishing them in the 'CloudBees CD - Publish Artifact' post-build step. electricflow 1.1.32 and earlier follows symbolic links to locations outside of the temporary directory on the controller whe...

6.5CVSS6.6AI score0.01159EPSS
Exploits0Affected Software1
Jenkins Security Advisories
Jenkins Security Advisories
added 2023/09/06 12:0 a.m.8 views

CSRF vulnerability in ivy

ivy 2.5 and earlier does not require POST requests for an HTTP endpoint, resulting in a cross-site request forgery CSRF vulnerability. This vulnerability allows attackers to delete disabled modules. As of publication of this advisory, there is no fix. Learn why we announce this...

6.5CVSS6.3AI score0.00309EPSS
Exploits0Affected Software1
Jenkins Security Advisories
Jenkins Security Advisories
added 2023/09/06 12:0 a.m.8 views

Path traversal allows exploiting XSS vulnerability in jobConfigHistory

jobConfigHistory 1227.v7a79fc4dc01f and earlier does not restrict a name query parameter when rendering a history entry. This allows attackers to have Jenkins render a manipulated configuration history that was not created by the plugin. The history view does not property sanitize or escape the...

8CVSS5AI score0.0076EPSS
Exploits0Affected Software1
Jenkins Security Advisories
Jenkins Security Advisories
added 2023/09/06 12:0 a.m.8 views

Stored XSS vulnerability in tap

tap 2.3 and earlier does not escape TAP file contents. This results in a stored cross-site scripting XSS vulnerability exploitable by attackers able to control TAP file contents. As of publication of this advisory, there is no fix. Learn why we announce this...

8CVSS5.3AI score0.00542EPSS
Exploits0Affected Software1
Jenkins Security Advisories
Jenkins Security Advisories
added 2023/09/06 12:0 a.m.8 views

CSRF vulnerability and missing permission checks in frugal-testing

frugal-testing 1.1 and earlier does not perform permission checks in several HTTP endpoints. This allows attackers with Overall/Read permission to do the following: Connect to Frugal Testing using attacker-specified username and password. Retrieve test IDs and names from Frugal Testing, if a vali...

5.4CVSS4.9AI score0.00371EPSS
Exploits0Affected Software1
Jenkins Security Advisories
Jenkins Security Advisories
added 2023/09/06 12:0 a.m.8 views

Improper masking of credentials in pipeline-maven

pipeline-maven integrates with https://plugins.jenkins.io/config-file-provider/Config File Provider Plugin to specify custom Maven settings, including credentials for authentication. pipeline-maven 1330.v18e473854496 and earlier does not properly mask i.e., replace with asterisks usernames of...

5.3CVSS5.7AI score0.00544EPSS
Exploits0Affected Software1
Jenkins Security Advisories
Jenkins Security Advisories
added 2023/09/06 12:0 a.m.8 views

Incorrect permission checks in qualys-cs

qualys-cs 1.6.2.6 and earlier does not correctly perform a permission check in multiple HTTP endpoints. This allows attackers with global Item/Configure permission while lacking Item/Configure permission on any particular job to do the following: Enumerate credentials IDs of credentials stored in...

7.1CVSS5.1AI score0.00317EPSS
Exploits0Affected Software1
Jenkins Security Advisories
Jenkins Security Advisories
added 2023/08/16 12:0 a.m.8 views

CSRF vulnerability and missing permission checks in fortify allow capturing credentials

fortify 22.1.38 and earlier does not perform permission checks in several HTTP endpoints. This allows attackers with Overall/Read permission to connect to an attacker-specified URL using attacker-specified credentials IDs obtained through another method, capturing credentials stored in Jenkins...

5.4CVSS5AI score0.00268EPSS
Exploits0Affected Software1
Jenkins Security Advisories
Jenkins Security Advisories
added 2023/08/16 12:0 a.m.8 views

Stored XSS vulnerability in flaky-test-handler

flaky-test-handler 1.2.2 and earlier does not escape JUnit test contents when showing them on the Jenkins UI. This results in a stored cross-site scripting XSS vulnerability exploitable by attackers able to control JUnit report file contents. flaky-test-handler 1.2.3 escapes JUnit test contents...

8CVSS5.3AI score0.00521EPSS
Exploits0Affected Software1
Jenkins Security Advisories
Jenkins Security Advisories
added 2023/08/16 12:0 a.m.8 views

Unsafe default behavior and information disclosure in gogs-webhook webhook

gogs-webhook provides a webhook endpoint at /gogs-webhook that can be used to trigger builds of jobs. In gogs-webhook 1.0.15 and earlier, an option to specify a Gogs secret for this webhook is provided, but not enabled by default. This allows unauthenticated attackers to trigger builds of jobs...

6.5CVSS5.5AI score0.00577EPSS
Exploits0Affected Software1
Jenkins Security Advisories
Jenkins Security Advisories
added 2023/07/12 12:0 a.m.8 views

CSRF vulnerability and missing permission checks in benchmark-evaluator

benchmark-evaluator 1.0.1 and earlier does not perform a permission check in a method implementing form validation. This allows attackers with Overall/Read permission to connect to an attacker-specified URL and to check for the existence of directories, .csv, and .ycsb files on the Jenkins...

8.8CVSS6.6AI score0.00502EPSS
Exploits0Affected Software1
Jenkins Security Advisories
Jenkins Security Advisories
added 2023/06/14 12:0 a.m.8 views

CSRF protection bypass vulnerability

Jenkins provides context menus for various UI elements, like links to jobs and builds, or breadcrumbs. In Jenkins 2.399 and earlier, LTS 2.387.3 and earlier, POST requests are sent in order to load the list of context actions. If part of the URL includes insufficiently escaped user-provided value...

8CVSS7.5AI score0.0086EPSS
Exploits0Affected Software1
Jenkins Security Advisories
Jenkins Security Advisories
added 2023/06/14 12:0 a.m.8 views

CSRF vulnerability and missing permission checks in ease-plugin

ease-plugin 2.6 and earlier does not perform permission checks in several HTTP endpoints. This allows attackers with Overall/Read permission to connect to an attacker-specified URL using attacker-specified credentials IDs obtained through another method, capturing credentials stored in Jenkins...

6.5CVSS5.8AI score0.00658EPSS
Exploits0Affected Software1
Jenkins Security Advisories
Jenkins Security Advisories
added 2023/05/16 12:0 a.m.8 views

Stored XSS vulnerability in testng-plugin

testng-plugin 730.v4c5283037693 and earlier does not escape several values that are parsed from TestNG report files and displayed on the plugin's test information pages. This results in a stored cross-site scripting XSS vulnerability exploitable by attackers able to provide a crafted TestNG repor...

8CVSS5.3AI score0.00456EPSS
Exploits0Affected Software1
Jenkins Security Advisories
Jenkins Security Advisories
added 2023/05/16 12:0 a.m.8 views

Secrets stored and displayed in plain text by ansible

ansible allows the specification of extra variables that can be passed to Ansible. These extra variables are commonly used to pass secrets. ansible 204.v8191fd551ebf and earlier stores these extra variables unencrypted in job config.xml files on the Jenkins controller as part of its configuration...

5.3CVSS5.1AI score0.00379EPSS
Exploits0Affected Software1
Jenkins Security Advisories
Jenkins Security Advisories
added 2023/05/16 12:0 a.m.8 views

CSRF vulnerability and missing permission checks in azure-vm-agents

azure-vm-agents 852.v8d35f0960a43 and earlier does not perform permission checks in several HTTP endpoints. This allows attackers with Overall/Read permission to connect to an attacker-specified Azure Cloud server using attacker-specified credentials IDs obtained through another method...

8.8CVSS6.9AI score0.00578EPSS
Exploits0Affected Software1
Jenkins Security Advisories
Jenkins Security Advisories
added 2023/03/21 12:0 a.m.8 views

Stored XSS vulnerability in jacoco

jacoco 3.3.2 and earlier does not escape class and method names shown on the UI. This results in a stored cross-site scripting XSS vulnerability exploitable by attackers able to control input files for the 'Record JaCoCo coverage report' post-build action. jacoco 3.3.2.1 escapes class and method...

8CVSS5.3AI score0.0056EPSS
Exploits0Affected Software1
Jenkins Security Advisories
Jenkins Security Advisories
added 2023/03/21 12:0 a.m.8 views

XXE vulnerability in crap4j

crap4j 0.9 and earlier does not configure its XML parser to prevent XML external entity XXE attacks. This allows attackers able to control Crap Report file contents to have Jenkins parse a crafted XML document that uses external entities for extraction of secrets from the Jenkins controller or...

7.5CVSS7.3AI score0.00766EPSS
Exploits0Affected Software1
Jenkins Security Advisories
Jenkins Security Advisories
added 2023/03/21 12:0 a.m.8 views

Incorrect permission checks in role-strategy

Permissions in Jenkins can be enabled and disabled. Some permissions are disabled by default, e.g., Overall/Manage or Item/Extended Read. Disabled permissions cannot be granted directly, only through greater permissions that imply them e.g., Overall/Administer or Item/Configure. role-strategy...

9.8CVSS8.2AI score0.00828EPSS
Exploits0Affected Software1
Jenkins Security Advisories
Jenkins Security Advisories
added 2023/03/21 12:0 a.m.8 views

XXE vulnerability in vs-code-metrics

vs-code-metrics 1.7 and earlier does not configure its XML parser to prevent XML external entity XXE attacks. This allows attackers able to control VS Code Metrics File contents to have Jenkins parse a crafted XML document that uses external entities for extraction of secrets from the Jenkins...

8.2CVSS7.9AI score0.00569EPSS
Exploits0Affected Software1
Jenkins Security Advisories
Jenkins Security Advisories
added 2023/03/08 12:0 a.m.8 views

XSS vulnerability in plugin manager

Jenkins 2.270 through 2.393 both inclusive, LTS 2.277.1 through 2.375.3 both inclusive does not escape the Jenkins version a plugin depends on when rendering the error message stating its incompatibility with the current version of Jenkins in the plugin manager. This results in a stored cross-sit...

9.6CVSS7.1AI score0.0184EPSS
Exploits0Affected Software1
Jenkins Security Advisories
Jenkins Security Advisories
added 2023/02/15 12:0 a.m.8 views

Script Security sandbox bypass vulnerability in email-ext

email-ext allows defining custom email templates using https://plugins.jenkins.io/config-file-provider/Config File Provider plugin as Jelly or Groovy files. When defined inside a https://plugins.jenkins.io/cloudbees-folder/folder, email templates need to be subject to Script Security protection...

9.9CVSS9AI score0.01095EPSS
Exploits0Affected Software1
Jenkins Security Advisories
Jenkins Security Advisories
added 2023/01/24 12:0 a.m.8 views

Missing permission check in ghprb allows enumerating credentials IDs

ghprb 1.42.2 and earlier does not perform a permission check in an HTTP endpoint. This allows attackers with Overall/Read permission to enumerate credentials IDs of credentials stored in Jenkins. Those can be used as part of an attack to capture the credentials using another vulnerability. As of...

4.3CVSS5.1AI score0.00661EPSS
Exploits0Affected Software1
Jenkins Security Advisories
Jenkins Security Advisories
added 2022/09/21 12:0 a.m.8 views

Stored XSS vulnerability in DotCi

DotCi 2.40.00 and earlier does not escape the GitHub user name parameter provided to commit notifications when displaying them in a build cause. This results in a stored cross-site scripting XSS vulnerability exploitable by attackers able to submit crafted commit notifications to the /githook/...

8.8CVSS5.3AI score0.00587EPSS
Exploits0Affected Software1
Jenkins Security Advisories
Jenkins Security Advisories
added 2022/09/21 12:0 a.m.8 views

XXE vulnerability in compuware-common-configuration

compuware-common-configuration 1.0.14 and earlier does not configure its XML parser to prevent XML external entity XXE attacks. This allows attackers able to change the contents of the Topaz Workbench CLI home directory on agents to have Jenkins parse a crafted file that uses external entities fo...

9.8CVSS8.4AI score0.00787EPSS
Exploits0Affected Software1
Jenkins Security Advisories
Jenkins Security Advisories
added 2022/09/21 12:0 a.m.8 views

API token stored in plain text by CONS3RT

CONS3RT 1.0.0 and earlier stores Cons3rt API token unencrypted in job config.xml files on the Jenkins controller as part of its configuration. This API token can be viewed by users with access to the Jenkins controller file system. As of publication of this advisory, there is no fix. Learn why we...

6.5CVSS6.4AI score0.00676EPSS
Exploits0Affected Software1
Jenkins Security Advisories
Jenkins Security Advisories
added 2022/09/21 12:0 a.m.8 views

Missing hostname validation in view26

view26 1.0.7 and earlier does not perform hostname validation when connecting to the configured View26 server. This lack of validation could be abused using a man-in-the-middle attack to intercept these connections. As of publication of this advisory, there is no fix. Learn why we announce this...

8.1CVSS7.6AI score0.00539EPSS
Exploits0Affected Software1
Jenkins Security Advisories
Jenkins Security Advisories
added 2022/08/23 12:0 a.m.8 views

RCE vulnerability in Kubernetes Continuous Deploy

Kubernetes Continuous Deploy 2.3.1 and earlier bundles a version of Kubernetes Java Client library with the vulnerability https://vulners.com/cve/CVE-2021-25738CVE-2021-25738 that does not configure its YAML parser to prevent the instantiation of arbitrary types. This results in a remote code...

8.8CVSS7.9AI score0.00458EPSS
Exploits0Affected Software1
Jenkins Security Advisories
Jenkins Security Advisories
added 2022/08/23 12:0 a.m.8 views

Stored XSS vulnerability in jobConfigHistory

jobConfigHistory 1165.v8cc9fd1f4597 and earlier does not escape the job name on the System Configuration History page. This results in a stored cross-site scripting XSS vulnerability exploitable by attackers able to configure job names. jobConfigHistory 1166.vc9f255f45b8a escapes the job name on...

8CVSS5.4AI score0.0059EPSS
Exploits0Affected Software1
Total number of security vulnerabilities1464