Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
jenkins vulnerabilities and exploits
(subscribe to this query)
605
VMScore
CVE-2022-28150
A cross-site request forgery (CSRF) vulnerability in Jenkins Job and Node ownership Plugin 0.13.0 and previous versions allows malicious users to change the owners and item-specific permissions of a job.
Jenkins Job And Node Ownership
605
VMScore
CVE-2022-27204
A cross-site request forgery vulnerability in Jenkins Extended Choice Parameter Plugin 346.vd87693c5a_86c and previous versions allows malicious users to connect to an attacker-specified URL.
Jenkins Extended Choice Parameter
605
VMScore
CVE-2022-25198
A cross-site request forgery (CSRF) vulnerability in Jenkins SCP publisher Plugin 1.8 and previous versions allows malicious users to connect to an attacker-specified SSH server using attacker-specified credentials.
Jenkins Scp Publisher
605
VMScore
CVE-2022-25200
A cross-site request forgery (CSRF) vulnerability in Jenkins Checkmarx Plugin 2022.1.2 and previous versions allows malicious users to connect to an attacker-specified webserver using attacker-specified credentials IDs obtained through another method, capturing credentials stored...
Jenkins Checkmarx
605
VMScore
CVE-2022-25205
A cross-site request forgery (CSRF) vulnerability in Jenkins dbCharts Plugin 0.5.2 and previous versions allows malicious users to connect to an attacker-specified database via JDBC using attacker-specified credentials and to determine if a class is available in the Jenkins insta...
Jenkins Dbcharts
605
VMScore
CVE-2022-25192
A cross-site request forgery (CSRF) vulnerability in Jenkins Snow Commander Plugin 1.10 and previous versions allows malicious users to connect to an attacker-specified webserver using attacker-specified credentials IDs obtained through another method, capturing credentials store...
Jenkins Snow Commander
605
VMScore
CVE-2022-25194
A cross-site request forgery (CSRF) vulnerability in Jenkins autonomiq Plugin 1.15 and previous versions allows malicious users to connect to an attacker-specified URL server using attacker-specified credentials.
Jenkins Autonomiq
605
VMScore
CVE-2022-25207
A cross-site request forgery (CSRF) vulnerability in Jenkins Chef Sinatra Plugin 1.20 and previous versions allows malicious users to have Jenkins send an HTTP request to an attacker-controlled URL and have it parse an XML response.
Jenkins Chef Sinatra
605
VMScore
CVE-2022-25212
A cross-site request forgery (CSRF) vulnerability in Jenkins SWAMP Plugin 1.2.6 and previous versions allows malicious users to connect to an attacker-specified web server using attacker-specified credentials.
Jenkins Swamp
605
VMScore
CVE-2021-21695
FilePath#listFiles lists files outside directories that agents are allowed to access when following symbolic links in Jenkins 2.318 and previous versions, LTS 2.303.2 and previous versions.
Jenkins Jenkins
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
bypass
open redirect
CVE-2024-4358
CVE-2024-24199
CVE-2024-5550
CVE-2024-5305
CVE-2024-30373
CVE-2024-1800
deserialization
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
9
10
NEXT »