Where
AND
-Infinity
0

Trending

Last week
Last month
Last year

Jenkins Gatling PluginXSS

Risk 54
Severity
8
EPSS
0.05%
First published (updated )
CVE-2025-5806

Jenkins JenkinsJenkins 2.217 through 2.441 (both inclusive), LTS 2.222.1 through 2.426.2 (both inclusive) does not …

Risk 58
Severity
8.8
EPSS
0.09%
First published (updated )
CVE-2024-23898

maven/org.jenkins-ci.main:jenkins-coreIn Jenkins 2.423 and earlier, LTS 2.414.1 and earlier, processing file uploads using MultipartFormDa…

Risk 64
Severity
8.1
First published (updated )
CVE-2023-43498

maven/org.jenkins-ci.main:jenkins-coreMalicious File Upload

Risk 62
Severity
8.1
First published (updated )
CVE-2023-43497

maven/org.jenkins-ci.main:jenkins-coreJenkins weekly and LTS could allow a local authenticated attacker to execute arbitrary code on the s…

Risk 84
Severity
8.8
First published (updated )
CVE-2023-43496
Free Weekly Intel

Don't miss critical vulnerabilities

Join thousands of security professionals who receive our weekly digest of trending CVEs, zero-days, and exploited vulnerabilities.

No spam. Unsubscribe anytime.

maven/org.jenkins-ci.main:jenkins-coreXSS

Risk 75
Severity
8
First published (updated )
CVE-2023-43495

maven/org.jenkins-ci.main:jenkins-coreXSS

Risk 75
Severity
8
First published (updated )
CVE-2023-39151

Jenkins JenkinsCSRF

Risk 71
Severity
8
First published (updated )
CVE-2023-35141

maven/org.jenkins-ci.main:jenkins-coreJenkins 2.393 and earlier, LTS 2.375.3 and earlier uses the Apache Commons FileUpload library withou…

Risk 46
Severity
7.5
First published (updated )
CVE-2023-27901

maven/org.jenkins-ci.main:jenkins-coreA flaw was found in Jenkins. Jenkins creates a temporary file when a plugin is uploaded from an admi…

Risk 67
Severity
7
First published (updated )
CVE-2023-27899
Free Weekly Intel

Don't miss critical vulnerabilities

Join thousands of security professionals who receive our weekly digest of trending CVEs, zero-days, and exploited vulnerabilities.

No spam. Unsubscribe anytime.

maven/org.jenkins-ci.main:jenkins-coreJenkins 2.393 and earlier, LTS 2.375.3 and earlier uses the Apache Commons FileUpload library withou…

Risk 45
Severity
7.5
First published (updated )
CVE-2023-27900

Jenkins Katalon JenkinsCode Injection

Risk 82
Severity
8.8
First published (updated )
CVE-2022-43416

Jenkins Compuware Topaz For Total Test WordpressJenkins Compuware Topaz for Total Test Plugin 2.4.8 and earlier implements an agent/controller messa…

Risk 43
Severity
7.5
First published (updated )
CVE-2022-43429

Jenkins Compuware Topaz For Total Test JenkinsJenkins Compuware Topaz for Total Test Plugin 2.4.8 and earlier implements an agent/controller messa…

Risk 45
Severity
7.5
First published (updated )
CVE-2022-43428

Jenkins JenkinsXSS

Risk 75
Severity
8
First published (updated )
CVE-2022-41224
Free Weekly Intel

Don't miss critical vulnerabilities

Join thousands of security professionals who receive our weekly digest of trending CVEs, zero-days, and exploited vulnerabilities.

No spam. Unsubscribe anytime.

Jenkins Compuware Zadviser Api JenkinsJenkins Compuware zAdviser API Plugin 1.0.3 and earlier does not restrict execution of a controller/…

Risk 57
Severity
8.2
First published (updated )
CVE-2022-36900

Jenkins Compuware Ispw Operations JenkinsJenkins Compuware ISPW Operations Plugin 1.0.8 and earlier does not restrict execution of a controll…

Risk 54
Severity
8.2
First published (updated )
CVE-2022-36899

maven/org.eclipse.jetty.http2:http2-serverA flaw was found in the Eclipse Jetty http2-server package. This flaw allows an attacker to cause a …

Risk 45
Severity
7.5
First published (updated )
CVE-2022-2048

maven/org.jenkins-ci.main:jenkins-coreJenkins 2.335 through 2.355 (both inclusive) allows attackers in some cases to bypass a protection m…

Risk 45
Severity
7.5
First published (updated )
CVE-2022-34175

maven/org.jenkins-ci.main:jenkins-coreXSS, Path Traversal

Risk 75
Severity
8
First published (updated )
CVE-2022-34170
Free Weekly Intel

Don't miss critical vulnerabilities

Join thousands of security professionals who receive our weekly digest of trending CVEs, zero-days, and exploited vulnerabilities.

No spam. Unsubscribe anytime.

redhat/jenkinsIn Jenkins 2.355 and earlier, LTS 2.332.3 and earlier, an observable timing discrepancy on the login…

Risk 45
Severity
7.5
First published (updated )
CVE-2022-34174

maven/org.jenkins-ci.main:jenkins-coreJenkins 2.333 and earlier, LTS 2.319.2 and earlier defines custom XStream converters that have not b…

Risk 44
Severity
7.5
First published (updated )
CVE-2022-0538

redhat/jenkinsJenkins 2.299 and earlier, LTS 2.289.1 and earlier does not invalidate the previous session on login…

Risk 71
Severity
7.5
First published (updated )
CVE-2021-21671

redhat/jenkinsInput Validation, Path Traversal

Risk 74
Severity
8
First published (updated )
CVE-2021-21605

redhat/jenkinsJenkins 2.274 and earlier, LTS 2.263.1 and earlier allows attackers with permission to create or con…

Risk 74
Severity
8
First published (updated )
CVE-2021-21604
Free Weekly Intel

Don't miss critical vulnerabilities

Join thousands of security professionals who receive our weekly digest of trending CVEs, zero-days, and exploited vulnerabilities.

No spam. Unsubscribe anytime.

redhat/jenkinsXSS

Risk 74
Severity
8
First published (updated )
CVE-2020-2229

redhat/jenkinsXSS

Risk 74
Severity
8
First published (updated )
CVE-2020-2230

redhat/jenkinsXSS

Risk 74
Severity
8
First published (updated )
CVE-2020-2223

redhat/jenkinsXSS

Risk 74
Severity
8
First published (updated )
CVE-2020-2220

redhat/jenkinsXSS

Risk 74
Severity
8
First published (updated )
CVE-2020-2222
Free Weekly Intel

Don't miss critical vulnerabilities

Join thousands of security professionals who receive our weekly digest of trending CVEs, zero-days, and exploited vulnerabilities.

No spam. Unsubscribe anytime.

Company

Resources

Contact

SecAlerts Pty Ltd.
132 Wickham Terrace
Fortitude Valley,
QLD 4006, Australia
info@secalerts.co
By using SecAlerts services, you agree to our services end-user license agreement. This website is safeguarded by reCAPTCHA and governed by the Google Privacy Policy and Terms of Service. All names, logos, and brands of products are owned by their respective owners, and any usage of these names, logos, and brands for identification purposes only does not imply endorsement. If you possess any content that requires removal, please get in touch with us.
© 2026 SecAlerts Pty Ltd.
ABN: 70 645 966 203, ACN: 645 966 203