Where
AND
-Infinity
0

Trending

Last week
Last month
Last year

Vendor Risk Score

See how jenkins compares to other vendors in security performance

View Risk Score →

Jenkins JenkinsCSRF

Risk 20
Severity
3.5
First published (updated )
CVE-2025-67639

Jenkins Zoho QEngine PluginJenkins Zoho QEngine Plugin 1.0.29.vfa_cc23396502 and earlier does not mask the QEngine API Key form…

Risk 13
Severity
3.1
EPSS
0.03%
First published (updated )
CVE-2025-30197

maven/org.jenkins-ci.plugins:structsInfoleak

Risk 18
Severity
3.1
First published (updated )
CVE-2024-39458

Jenkins Frugal Testing JenkinsCSRF

Risk 20
Severity
3.5
First published (updated )
CVE-2023-41946

maven/org.jenkins-ci.plugins:synopsys-coverityCSRF

Risk 19
Severity
3.5
First published (updated )
CVE-2023-23847
Free Weekly Intel

Don't miss critical vulnerabilities

Join thousands of security professionals who receive our weekly digest of trending CVEs, zero-days, and exploited vulnerabilities.

No spam. Unsubscribe anytime.

maven/org.jenkins-ci.plugins:publish-over-sshJenkins Publish Over SSH Plugin 1.22 and earlier stores password unencrypted in its global configura…

Risk 18
Severity
3.3
First published (updated )
CVE-2022-23114

maven/com.hoiio.jenkins:smsJenkins SMS Notification Plugin 1.2 and earlier stores an access token unencrypted in its global con…

Risk 18
Severity
3.3
First published (updated )
CVE-2020-2297

Jenkins Couchdb-statistics JenkinsJenkins couchdb-statistics Plugin 0.3 and earlier stores its server password unencrypted in its glob…

Risk 18
Severity
3.3
First published (updated )
CVE-2020-2291

maven/org.jenkins-ci.plugins:tfsJenkins Team Foundation Server Plugin 5.157.1 and earlier stores a webhook secret unencrypted in its…

Risk 18
Severity
3.3
First published (updated )
CVE-2020-2249

Jenkins Elasticbox Ci JenkinsJenkins ElasticBox CI Plugin stores credentials unencrypted in the global config.xml configuration f…

Risk 18
Severity
3.3
First published (updated )
CVE-2019-10450
Free Weekly Intel

Don't miss critical vulnerabilities

Join thousands of security professionals who receive our weekly digest of trending CVEs, zero-days, and exploited vulnerabilities.

No spam. Unsubscribe anytime.

maven/org.jenkins-ci.plugins:aqua-serverlessJenkins Aqua Security Serverless Scanner Plugin 1.0.4 and earlier transmitted configured passwords i…

Risk 18
Severity
3.1
First published (updated )
CVE-2019-10397

Jenkins JenkinsInfoleak

Risk 19
Severity
3.5
First published (updated )
CVE-2017-2603

Jenkins Reverse Proxy Auth JenkinsInfoleak

Risk 18
Severity
3.3
First published (updated )
CVE-2018-1000150

Jenkins JenkinsInput Validation

Risk 13
Severity
2.2
First published (updated )
CVE-2017-1000401

Jenkins Git Client JenkinsInfoleak

Risk 18
Severity
3.3
First published (updated )
CVE-2017-1000242
Free Weekly Intel

Don't miss critical vulnerabilities

Join thousands of security professionals who receive our weekly digest of trending CVEs, zero-days, and exploited vulnerabilities.

No spam. Unsubscribe anytime.

redhat/JenkinsInput Validation

Risk 18
Severity
3.5
First published (updated )
CVE-2015-1808

redhat/JenkinsPath Traversal

Risk 18
Severity
3.5
First published (updated )
CVE-2015-1807

Jenkins JenkinsYann Rouillard reports: Jenkins on Tomcat fails to set the httponly flag on cookies. External refe…

Risk 5
Severity
1
First published (updated )
REDHAT-BUG-1185151

Jenkins JenkinsYann Rouillard reports: Jenkins on Tomcat fails to set the secure flag on cookies. External refere…

Risk 5
Severity
1
First published (updated )
REDHAT-BUG-1185148

maven/org.jenkins-ci.main:jenkins-coreThe doIndex function in hudson/util/RemotingDiagnostics.java in CloudBees Jenkins before 1.551 and L…

Risk 19
Severity
3.5
First published (updated )
CVE-2014-2068
Free Weekly Intel

Don't miss critical vulnerabilities

Join thousands of security professionals who receive our weekly digest of trending CVEs, zero-days, and exploited vulnerabilities.

No spam. Unsubscribe anytime.

Jenkins JenkinsXSS

Risk 13
Severity
2.1
First published (updated )
CVE-2013-2033

maven/org.jenkins-ci.main:jenkins-coreXSS

Risk 19
Severity
3.5
First published (updated )
CVE-2014-2067

Jenkins Subversion pluginKohsuke Kawaguchi reports: Insecure storage of passwords in Subversion plugin. Description Just no…

Risk 5
Severity
1
First published (updated )
REDHAT-BUG-1032391

Jenkins JenkinsUnspecified vulnerability in Jenkins before 1.498, Jenkins LTS before 1.480.2, and Jenkins Enterpris…

Risk 16
Severity
2.6
First published (updated )
CVE-2013-0158

Jenkins JenkinsXSS

Risk 19
Severity
3.5
First published (updated )
CVE-2012-6074
Free Weekly Intel

Don't miss critical vulnerabilities

Join thousands of security professionals who receive our weekly digest of trending CVEs, zero-days, and exploited vulnerabilities.

No spam. Unsubscribe anytime.

Jenkins JenkinsXSS

Risk 15
Severity
2.6
First published (updated )
CVE-2011-4344

Jenkins SkytapJenkins Skytap Cloud CI Cleartext Storage of Credentials Information Disclosure Vulnerability

Risk 18
Severity
3.3
Advisory
ZDI-19-833

Jenkins SkytapJenkins Skytap Cloud CI Cleartext Storage of Credentials Information Disclosure Vulnerability

Risk 18
Severity
3.3
ZDI-CAN-8875

Jenkins eggPlantJenkins eggPlant Cleartext Storage of Credentials Information Disclosure Vulnerability

Risk 18
Severity
3.3
Advisory
ZDI-19-834

Jenkins eggPlantJenkins eggPlant Cleartext Storage of Credentials Information Disclosure Vulnerability

Risk 18
Severity
3.3
ZDI-CAN-8876
Free Weekly Intel

Don't miss critical vulnerabilities

Join thousands of security professionals who receive our weekly digest of trending CVEs, zero-days, and exploited vulnerabilities.

No spam. Unsubscribe anytime.

Company

Resources

Contact

SecAlerts Pty Ltd.
132 Wickham Terrace
Fortitude Valley,
QLD 4006, Australia
info@secalerts.co
By using SecAlerts services, you agree to our services end-user license agreement. This website is safeguarded by reCAPTCHA and governed by the Google Privacy Policy and Terms of Service. All names, logos, and brands of products are owned by their respective owners, and any usage of these names, logos, and brands for identification purposes only does not imply endorsement. If you possess any content that requires removal, please get in touch with us.
© 2026 SecAlerts Pty Ltd.
ABN: 70 645 966 203, ACN: 645 966 203