Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
jenkins jenkins vulnerabilities and exploits
(subscribe to this query)
4.3
CVSSv2
CVE-2012-0324
Cross-site scripting (XSS) vulnerability in Jenkins prior to 1.454, Jenkins LTS prior to 1.424.5, and Jenkins Enterprise 1.400.x prior to 1.400.0.13 and 1.424.x prior to 1.424.5.1 allows remote malicious users to inject arbitrary web script or HTML via unspecified vectors, a diff...
Cloudbees Jenkins 1.400
Cloudbees Jenkins 1.400.0.12
Cloudbees Jenkins 1.424
Cloudbees Jenkins 1.424.5
Cloudbees Jenkins
Jenkins Jenkins 1.301
Jenkins Jenkins 1.302
Jenkins Jenkins 1.303
Jenkins Jenkins 1.304
Jenkins Jenkins 1.305
Jenkins Jenkins 1.306
Jenkins Jenkins 1.307
4.3
CVSSv2
CVE-2012-0325
Cross-site scripting (XSS) vulnerability in Jenkins prior to 1.454, Jenkins LTS prior to 1.424.5, and Jenkins Enterprise 1.400.x prior to 1.400.0.13 and 1.424.x prior to 1.424.5.1 allows remote malicious users to inject arbitrary web script or HTML via unspecified vectors, a diff...
Cloudbees Jenkins
Jenkins Jenkins 1.301
Jenkins Jenkins 1.302
Jenkins Jenkins 1.303
Jenkins Jenkins 1.304
Jenkins Jenkins 1.305
Jenkins Jenkins 1.306
Jenkins Jenkins 1.307
Jenkins Jenkins 1.308
Jenkins Jenkins 1.309
Jenkins Jenkins 1.310
Jenkins Jenkins 1.311
2.6
CVSSv2
CVE-2013-0158
Unspecified vulnerability in Jenkins prior to 1.498, Jenkins LTS prior to 1.480.2, and Jenkins Enterprise 1.447.x prior to 1.447.6.1 and 1.466.x prior to 1.466.12.1, when a slave is attached and anonymous read access is enabled, allows remote malicious users to obtain the master ...
Cloudbees Jenkins
Jenkins Jenkins 1.400
Jenkins Jenkins 1.401
Jenkins Jenkins 1.402
Jenkins Jenkins 1.403
Jenkins Jenkins 1.404
Jenkins Jenkins 1.405
Jenkins Jenkins 1.406
Jenkins Jenkins 1.407
Jenkins Jenkins 1.408
Jenkins Jenkins 1.409
Jenkins Jenkins 1.410
1 Article
4.3
CVSSv2
CVE-2012-6072
CRLF injection vulnerability in Jenkins prior to 1.491, Jenkins LTS prior to 1.480.1, and Jenkins Enterprise 1.424.x prior to 1.424.6.13, 1.447.x prior to 1.447.4.1, and 1.466.x prior to 1.466.10.1 allows remote malicious users to inject arbitrary HTTP headers and conduct HTTP re...
Cloudbees Jenkins 1.447.1.1
Cloudbees Jenkins 1.447.2.2
Cloudbees Jenkins 1.447.3.1
Cloudbees Jenkins 1.400
Cloudbees Jenkins 1.424
Cloudbees Jenkins 1.447
Jenkins Jenkins
Jenkins Jenkins 1.409.1
Jenkins Jenkins 1.409.2
Jenkins Jenkins 1.409.3
Jenkins Jenkins 1.424.1
Jenkins Jenkins 1.424.2
5.8
CVSSv2
CVE-2012-6073
Open redirect vulnerability in Jenkins prior to 1.491, Jenkins LTS prior to 1.480.1, and Jenkins Enterprise 1.424.x prior to 1.424.6.13, 1.447.x prior to 1.447.4.1, and 1.466.x prior to 1.466.10.1 allows remote malicious users to redirect users to arbitrary web sites and conduct ...
Cloudbees Jenkins 1.447.1.1
Cloudbees Jenkins 1.447.2.2
Cloudbees Jenkins 1.447.3.1
Cloudbees Jenkins 1.400
Cloudbees Jenkins 1.424
Cloudbees Jenkins 1.447
Jenkins Jenkins
Jenkins Jenkins 1.409.1
Jenkins Jenkins 1.409.2
Jenkins Jenkins 1.409.3
Jenkins Jenkins 1.424.1
Jenkins Jenkins 1.424.2
3.5
CVSSv2
CVE-2012-6074
Cross-site scripting (XSS) vulnerability in Jenkins prior to 1.491, Jenkins LTS prior to 1.480.1, and Jenkins Enterprise 1.424.x prior to 1.424.6.13, 1.447.x prior to 1.447.4.1, and 1.466.x prior to 1.466.10.1 allows remote authenticated users with write access to inject arbitrar...
Cloudbees Jenkins
Jenkins Jenkins 1.400
Jenkins Jenkins 1.401
Jenkins Jenkins 1.402
Jenkins Jenkins 1.403
Jenkins Jenkins 1.404
Jenkins Jenkins 1.405
Jenkins Jenkins 1.406
Jenkins Jenkins 1.407
Jenkins Jenkins 1.408
Jenkins Jenkins 1.409
Jenkins Jenkins 1.410
2.6
CVSSv2
CVE-2011-4344
Cross-site scripting (XSS) vulnerability in Jenkins Core in Jenkins prior to 1.438, and 1.409 LTS prior to 1.409.3 LTS, when a stand-alone container is used, allows remote malicious users to inject arbitrary web script or HTML via vectors related to error messages.
Jenkins Jenkins 1.409.1
Jenkins Jenkins 1.409.2
Jenkins Jenkins
7.5
CVSSv3
CVE-2017-1000092
Git Plugin connects to a user-specified Git repository as part of form validation. An attacker with no direct access to Jenkins but able to guess at a username/password credentials ID could trick a developer with job configuration permissions into following a link with a maliciou...
Jenkins Git 0.1.0
Jenkins Git 0.2.0
Jenkins Git 0.3.0
Jenkins Git 0.4.0
Jenkins Git 0.5.0
Jenkins Git 0.6.0
Jenkins Git 0.7.0
Jenkins Git 0.7.1
Jenkins Git 0.7.2
Jenkins Git 0.7.3
Jenkins Git 0.8.0
Jenkins Git 0.8.1
8.1
CVSSv3
CVE-2017-1000503
A race condition during Jenkins 2.81 up to and including 2.94 (inclusive); 2.89.1 startup could result in the wrong order of execution of commands during initialization. This could in rare cases result in failure to initialize the setup wizard on the first startup. This resulted ...
Jenkins Jenkins
Jenkins Jenkins 2.89.1
6.5
CVSSv3
CVE-2017-1000084
Parameterized Trigger Plugin fails to check Item/Build permission: The Parameterized Trigger Plugin did not check the build authentication it was running as and allowed triggering any other project in Jenkins.
Jenkins Parameterized Trigger 1.0
Jenkins Parameterized Trigger 1.1
Jenkins Parameterized Trigger 1.2
Jenkins Parameterized Trigger 1.3
Jenkins Parameterized Trigger 1.4
Jenkins Parameterized Trigger 1.5
Jenkins Parameterized Trigger 1.6
Jenkins Parameterized Trigger 2.0
Jenkins Parameterized Trigger 2.1
Jenkins Parameterized Trigger 2.2
Jenkins Parameterized Trigger 2.3
Jenkins Parameterized Trigger 2.4
Preferred Score:
CVSSv3
CVSSv2
CVSSv3
CVSSv4
EPSS
VMScore
Recommendations:
CVE-2025-23629
CVE-2024-52331
CVE-2025-0693
precious metals charts and widgets for wordpress
neofix
simple downloads list
CVE-2025-23544
CVE-2025-21298
client side
memory leak
CVE-2019-5418
XSS
deebot x5 pro plus
Home
/
Search Results
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
3
4
5
NEXT »