Where
AND
-Infinity
0

Trending

Last week
Last month
Last year

Vendor Risk Score

See how jenkins compares to other vendors in security performance

View Risk Score →

Software

jenkins
212
jenkins lts
149
jenkins jenkins
19
jenkins pipeline
14
jenkins configuration as code
8
jenkins script security
8
jenkins email extension template
7
jenkins kubernetes ci
7
jenkins config file provider
6
jenkins deployment dashboard plugin
6
jenkins electricflow
6
jenkins fortify
6
jenkins github branch source
6
jenkins openshift deployer
6
jenkins active choices
5
jenkins aws codecommit trigger
5
jenkins azure vm agents
5
jenkins code dx
5
jenkins credentials binding
5
jenkins dingding-notifications
5
jenkins gitlab
5
jenkins job configuration history
5
jenkins openid
5
jenkins promoted builds
5
jenkins active directory
4
jenkins build failure analyzer plugin
4
jenkins cadence vmanager plugin
4
jenkins delphix
4
jenkins extended choice parameter
4
jenkins octoperf load testing
4
jenkins on amazon ec2
4
jenkins repository connector
4
jenkins appspider
3
jenkins audit trail
3
jenkins beaker builder
3
jenkins bitbucket oauth
3
jenkins build-metrics
3
jenkins continuous integration with toad edge
3
jenkins convertigo mobile platform
3
jenkins credentials
3
jenkins crx content package deployer
3
jenkins dashboard view
3
jenkins dingding notifications
3
jenkins dynamic extended choice parameter
3
jenkins github pull request builder
3
jenkins gitlab authentication plugin
3
jenkins html publisher
3
jenkins jabber (xmpp) notifier and control
3
jenkins job and node ownership
3
jenkins performance
3

Jenkins Microsoft Entra ID PluginJenkins Microsoft Entra ID (previously Azure AD) Plugin 666.v6060de32f87d and earlier does not restr…

Risk 23
Severity
4.3
First published (updated )
CVE-2026-42525

Jenkins GitHub Branch Source PluginA missing permission check in Jenkins GitHub Branch Source Plugin 1967.vdea_d580c1a_b_a_ and earlier…

Risk 23
Severity
4.3
First published (updated )
CVE-2026-42522

Jenkins Matrix Authorization Strategy JenkinsJenkins Matrix Authorization Strategy Plugin 2.0-beta-1 through 3.2.9 (both inclusive) invokes param…

Risk 40
Severity
6.5
First published (updated )
CVE-2026-42521

Jenkins Script Security PluginA missing permission check in Jenkins Script Security Plugin 1399.ve6a_66547f6e1 and earlier allows …

Risk 23
Severity
4.3
First published (updated )
CVE-2026-42519

Jenkins LoadNinja PluginInfoleak

Risk 17
Severity
4.3
EPSS
0.03%
First published (updated )
CVE-2026-33004
Free Weekly Intel

Don't miss critical vulnerabilities

Join thousands of security professionals who receive our weekly digest of trending CVEs, zero-days, and exploited vulnerabilities.

No spam. Unsubscribe anytime.

Jenkins LoadNinja PluginJenkins LoadNinja Plugin 2.1 and earlier stores LoadNinja API keys unencrypted in job config.xml fil…

Risk 17
Severity
4.3
EPSS
0.03%
First published (updated )
CVE-2026-33003

Jenkins JenkinsInfoleak

Risk 17
Severity
4.3
EPSS
0.12%
First published (updated )
CVE-2026-27100

Jenkins Pipeline Reporter for Jira PluginPath Traversal

Risk 24
Severity
4.3
First published (updated )
CVE-2025-67643

HashiCorp Jenkins HashiCorp Vault PluginJenkins HashiCorp Vault Plugin 371.v884a_4dd60fb_6 and earlier does not set the appropriate context …

Risk 24
Severity
4.3
First published (updated )
CVE-2025-67642

Jenkins Git client PluginOS Command Injection

Risk 41
Severity
5
First published (updated )
CVE-2025-67640
Free Weekly Intel

Don't miss critical vulnerabilities

Join thousands of security professionals who receive our weekly digest of trending CVEs, zero-days, and exploited vulnerabilities.

No spam. Unsubscribe anytime.

Jenkins JenkinsJenkins 2.540 and earlier, LTS 2.528.2 and earlier does not mask build authorization tokens displaye…

Risk 24
Severity
4.3
First published (updated )
CVE-2025-67638

Jenkins JenkinsJenkins 2.540 and earlier, LTS 2.528.2 and earlier stores build authorization tokens unencrypted in …

Risk 24
Severity
4.3
First published (updated )
CVE-2025-67637

Jenkins JenkinsA missing permission check in Jenkins 2.540 and earlier, LTS 2.528.2 and earlier allows attackers wi…

Risk 24
Severity
4.3
First published (updated )
CVE-2025-67636

Jenkins Publish to Bitbucket PluginCSRF

Risk 36
Severity
5.4
First published (updated )
CVE-2025-64150

Jenkins Publish to Bitbucket PluginCSRF

Risk 36
Severity
5.4
First published (updated )
CVE-2025-64149
Free Weekly Intel

Don't miss critical vulnerabilities

Join thousands of security professionals who receive our weekly digest of trending CVEs, zero-days, and exploited vulnerabilities.

No spam. Unsubscribe anytime.

Jenkins Publish to Bitbucket PluginA missing permission check in Jenkins Publish to Bitbucket Plugin 0.4 and earlier allows attackers w…

Risk 24
Severity
4.3
First published (updated )
CVE-2025-64148

Jenkins Curseforge Publisher PluginJenkins Curseforge Publisher Plugin 1.0 does not mask API Keys displayed on the job configuration fo…

Risk 24
Severity
4.3
First published (updated )
CVE-2025-64147

Jenkins Curseforge Publisher PluginJenkins Curseforge Publisher Plugin 1.0 stores API Keys unencrypted in job config.xml files on the J…

Risk 24
Severity
4.3
First published (updated )
CVE-2025-64146

Jenkins ByteGuard Build Actions PluginJenkins ByteGuard Build Actions Plugin 1.0 does not mask API tokens displayed on the job configurati…

Risk 24
Severity
4.3
First published (updated )
CVE-2025-64145

Jenkins ByteGuard Build Actions PluginJenkins ByteGuard Build Actions Plugin 1.0 stores API tokens unencrypted in job config.xml files on …

Risk 24
Severity
4.3
First published (updated )
CVE-2025-64144
Free Weekly Intel

Don't miss critical vulnerabilities

Join thousands of security professionals who receive our weekly digest of trending CVEs, zero-days, and exploited vulnerabilities.

No spam. Unsubscribe anytime.

Jenkins Nexus Task Runner PluginCSRF

Risk 24
Severity
4.3
First published (updated )
CVE-2025-64142

Jenkins OpenShift Pipeline PluginJenkins OpenShift Pipeline Plugin 1.0.57 and earlier stores authorization tokens unencrypted in job …

Risk 24
Severity
4.3
First published (updated )
CVE-2025-64143

Jenkins Nexus Task Runner PluginCSRF

Risk 24
Severity
4.3
First published (updated )
CVE-2025-64141

Jenkins Start Windocks Containers PluginCSRF

Risk 24
Severity
4.3
First published (updated )
CVE-2025-64139

Jenkins Start Windocks Containers PluginCSRF

Risk 24
Severity
4.3
First published (updated )
CVE-2025-64138
Free Weekly Intel

Don't miss critical vulnerabilities

Join thousands of security professionals who receive our weekly digest of trending CVEs, zero-days, and exploited vulnerabilities.

No spam. Unsubscribe anytime.

Jenkins Themis PluginCSRF

Risk 23
Severity
4.3
First published (updated )
CVE-2025-64137

Jenkins Eggplant Runner PluginJenkins Eggplant Runner Plugin 0.0.1.301.v963cffe8ddb_8 and earlier sets the Java system property `j…

Risk 37
Severity
5.9
First published (updated )
CVE-2025-64135

Jenkins Themis PluginCSRF

Risk 23
Severity
4.3
First published (updated )
CVE-2025-64136

Jenkins Extensible Choice Parameter PluginCSRF

Risk 36
Severity
5.4
First published (updated )
CVE-2025-64133

Jenkins MCP Server PluginJenkins MCP Server Plugin 0.84.v50ca_24ef83f2 and earlier does not perform permission checks in mult…

Risk 36
Severity
5.4
First published (updated )
CVE-2025-64132
Free Weekly Intel

Don't miss critical vulnerabilities

Join thousands of security professionals who receive our weekly digest of trending CVEs, zero-days, and exploited vulnerabilities.

No spam. Unsubscribe anytime.

Company

Resources

Contact

SecAlerts Pty Ltd.
132 Wickham Terrace
Fortitude Valley,
QLD 4006, Australia
info@secalerts.co
By using SecAlerts services, you agree to our services end-user license agreement. This website is safeguarded by reCAPTCHA and governed by the Google Privacy Policy and Terms of Service. All names, logos, and brands of products are owned by their respective owners, and any usage of these names, logos, and brands for identification purposes only does not imply endorsement. If you possess any content that requires removal, please get in touch with us.
© 2026 SecAlerts Pty Ltd.
ABN: 70 645 966 203, ACN: 645 966 203