Where
-Infinity
0

Trending

Last week
Last month
Last year

Vendor Risk Score

See how jenkins compares to other vendors in security performance

View Risk Score →

Software

jenkins
337
jenkins lts
269
jenkins jenkins
41
jenkins pipeline
38
jenkins script security
29
jenkins repository connector
10
jenkins configuration as code
9
jenkins email extension template
9
jenkins kubernetes ci
9
jenkins active directory
8
jenkins build failure analyzer plugin
8
jenkins config file provider
8
jenkins openid
7
jenkins azure vm agents
6
jenkins bitbucket oauth
6
jenkins deployment dashboard plugin
6
jenkins fortify
6
jenkins performance publisher
6
jenkins relution enterprise appstore publisher
6
jenkins subversion
6
jenkins active choices
5
jenkins aws codecommit trigger
5
jenkins azure ad
5
jenkins cadence vmanager plugin
5
jenkins code dx
5
jenkins credentials binding
5
jenkins delphix
5
jenkins dingding-notifications
5
jenkins electricflow
5
jenkins extended choice parameter
5
jenkins github branch source
5
jenkins on amazon ec2
5
jenkins saml single sign-on
5
jenkins websphere deployer
5
jenkins appspider
4
jenkins checkmarx
4
jenkins compuware topaz for total test
4
jenkins continuous integration with toad edge
4
jenkins convertigo mobile platform
4
jenkins credentials
4
jenkins crx content package deployer
4
jenkins deployer framework
4
jenkins gitlab
4
jenkins icescrum
4
jenkins jenkins lts
4
jenkins openid connect authentication plugin
4
jenkins openshift deployer
4
jenkins pipeline maven integration
4
jenkins promoted builds
4
jenkins support core
4

Jenkins Microsoft Entra ID PluginJenkins Microsoft Entra ID (previously Azure AD) Plugin 666.v6060de32f87d and earlier does not restr…

Risk 23
Severity
4.3
First published (updated )
CVE-2026-42525

Jenkins GitHub PluginXSS

Risk 78
Severity
9
First published (updated )
CVE-2026-42523

Jenkins HTML Publisher PluginXSS

Risk 75
Severity
8
First published (updated )
CVE-2026-42524

Jenkins GitHub Branch Source PluginA missing permission check in Jenkins GitHub Branch Source Plugin 1967.vdea_d580c1a_b_a_ and earlier…

Risk 23
Severity
4.3
First published (updated )
CVE-2026-42522

Jenkins Matrix Authorization Strategy JenkinsJenkins Matrix Authorization Strategy Plugin 2.0-beta-1 through 3.2.9 (both inclusive) invokes param…

Risk 40
Severity
6.5
First published (updated )
CVE-2026-42521
Free Weekly Intel

Don't miss critical vulnerabilities

Join thousands of security professionals who receive our weekly digest of trending CVEs, zero-days, and exploited vulnerabilities.

No spam. Unsubscribe anytime.

Jenkins Credentials Binding PluginPath Traversal

Risk 73
Severity
7.5
First published (updated )
CVE-2026-42520

Jenkins Script Security PluginA missing permission check in Jenkins Script Security Plugin 1399.ve6a_66547f6e1 and earlier allows …

Risk 23
Severity
4.3
First published (updated )
CVE-2026-42519

oss-secMultiple vulnerabilities in Jenkins plugins

First published (updated )
https://seclists.org/oss-sec/2026/q2/273

Jenkins LoadNinja PluginInfoleak

Risk 17
Severity
4.3
EPSS
0.03%
First published (updated )
CVE-2026-33004

Jenkins JenkinsJenkins 2.442 through 2.554 (both inclusive), LTS 2.426.3 through LTS 2.541.2 (both inclusive) perfo…

Risk 52
Severity
7.5
EPSS
0.05%
First published (updated )
CVE-2026-33002
Free Weekly Intel

Don't miss critical vulnerabilities

Join thousands of security professionals who receive our weekly digest of trending CVEs, zero-days, and exploited vulnerabilities.

No spam. Unsubscribe anytime.

Jenkins LoadNinja PluginJenkins LoadNinja Plugin 2.1 and earlier stores LoadNinja API keys unencrypted in job config.xml fil…

Risk 17
Severity
4.3
EPSS
0.03%
First published (updated )
CVE-2026-33003

Jenkins JenkinsJenkins 2.554 and earlier, LTS 2.541.2 and earlier does not safely handle symbolic links during the …

Risk 58
Severity
8.8
EPSS
0.12%
First published (updated )
CVE-2026-33001

oss-secMultiple vulnerabilities in Jenkins and Jenkins plugins

First published (updated )
https://seclists.org/oss-sec/2026/q1/338

Jenkins JenkinsInfoleak

Risk 17
Severity
4.3
EPSS
0.12%
First published (updated )
CVE-2026-27100

Jenkins JenkinsXSS

Risk 54
Severity
8
EPSS
0.04%
First published (updated )
CVE-2026-27099
Free Weekly Intel

Don't miss critical vulnerabilities

Join thousands of security professionals who receive our weekly digest of trending CVEs, zero-days, and exploited vulnerabilities.

No spam. Unsubscribe anytime.

Jenkins Pipeline Reporter for Jira PluginPath Traversal

Risk 24
Severity
4.3
First published (updated )
CVE-2025-67643

HashiCorp Jenkins HashiCorp Vault PluginJenkins HashiCorp Vault Plugin 371.v884a_4dd60fb_6 and earlier does not set the appropriate context …

Risk 24
Severity
4.3
First published (updated )
CVE-2025-67642

Jenkins Coverage PluginXSS

Risk 75
Severity
8
First published (updated )
CVE-2025-67641

Jenkins Git client PluginOS Command Injection

Risk 41
Severity
5
First published (updated )
CVE-2025-67640

Jenkins JenkinsCSRF

Risk 20
Severity
3.5
First published (updated )
CVE-2025-67639
Free Weekly Intel

Don't miss critical vulnerabilities

Join thousands of security professionals who receive our weekly digest of trending CVEs, zero-days, and exploited vulnerabilities.

No spam. Unsubscribe anytime.

Jenkins JenkinsJenkins 2.540 and earlier, LTS 2.528.2 and earlier does not mask build authorization tokens displaye…

Risk 24
Severity
4.3
First published (updated )
CVE-2025-67638

Jenkins JenkinsJenkins 2.540 and earlier, LTS 2.528.2 and earlier stores build authorization tokens unencrypted in …

Risk 24
Severity
4.3
First published (updated )
CVE-2025-67637

Jenkins JenkinsA missing permission check in Jenkins 2.540 and earlier, LTS 2.528.2 and earlier allows attackers wi…

Risk 24
Severity
4.3
First published (updated )
CVE-2025-67636

Jenkins JenkinsJenkins 2.540 and earlier, LTS 2.528.2 and earlier does not properly close HTTP-based CLI connection…

Risk 46
Severity
7.5
First published (updated )
CVE-2025-67635

oss-secMultiple vulnerabilities in Jenkins and Jenkins plugins

First published (updated )
https://seclists.org/oss-sec/2025/q4/259
Free Weekly Intel

Don't miss critical vulnerabilities

Join thousands of security professionals who receive our weekly digest of trending CVEs, zero-days, and exploited vulnerabilities.

No spam. Unsubscribe anytime.

Jenkins Jenkins 2.541End of life details

First published (updated )
EOL-jenkins-2.541

Multiple vulnerabilities in Jenkins plugins

First published (updated )
https://seclists.org/oss-sec/2025/q4/113

Jenkins Publish to Bitbucket PluginCSRF

Risk 36
Severity
5.4
First published (updated )
CVE-2025-64150

Jenkins Publish to Bitbucket PluginCSRF

Risk 36
Severity
5.4
First published (updated )
CVE-2025-64149

Jenkins Publish to Bitbucket PluginA missing permission check in Jenkins Publish to Bitbucket Plugin 0.4 and earlier allows attackers w…

Risk 24
Severity
4.3
First published (updated )
CVE-2025-64148
Free Weekly Intel

Don't miss critical vulnerabilities

Join thousands of security professionals who receive our weekly digest of trending CVEs, zero-days, and exploited vulnerabilities.

No spam. Unsubscribe anytime.

Company

Resources

Contact

SecAlerts Pty Ltd.
132 Wickham Terrace
Fortitude Valley,
QLD 4006, Australia
info@secalerts.co
By using SecAlerts services, you agree to our services end-user license agreement. This website is safeguarded by reCAPTCHA and governed by the Google Privacy Policy and Terms of Service. All names, logos, and brands of products are owned by their respective owners, and any usage of these names, logos, and brands for identification purposes only does not imply endorsement. If you possess any content that requires removal, please get in touch with us.
© 2026 SecAlerts Pty Ltd.
ABN: 70 645 966 203, ACN: 645 966 203