| CVE-2016-9299 |
critical |
9.8 |
10.0 |
|
|
|
10y ago |
Improper Neutralization of Special Elements used in an LDAP Query in Jenkins |
| CVE-2016-0792 |
high |
8.8 |
9.8 |
|
|
|
10y ago |
Jenkins allows Deserialization of Untrusted Data via an XML File |
| CVE-2018-1999002 |
high |
— |
9.0 |
|
|
|
4y ago |
multiple issues in jenkins |
| CVE-2013-5573 |
medium |
— |
5.3 |
|
|
|
13y ago |
Jenkins allows Cross-Site Scripting (XSS) in User Configuration |
| CVE-2024-23897 |
unknown |
— |
2.5 |
|
|
|
2y ago |
Jenkins Command Line Interface (CLI) contains a path traversal vulnerability that allows attackers limited read access to certain files, which can lead to code execution. |
| CVE-2017-1000353 |
unknown |
— |
2.5 |
|
|
|
4y ago |
Jenkins contains a remote code execution vulnerability. This vulnerability that could allowed attackers to transfer a serialized Java SignedObject object to the remoting-based Jenkins CLI, that would… |
| CVE-2018-1000861 |
unknown |
— |
2.5 |
|
|
|
4y ago |
A code execution vulnerability exists in the Stapler web framework used by Jenkins |
| CVE-2020-2231 |
unknown |
— |
1.0 |
|
|
|
4y ago |
Improper Neutralization of Input During Web Page Generation in Jenkins |
| CVE-2020-2229 |
unknown |
— |
1.0 |
|
|
|
4y ago |
Jenkins Cross-Site Scripting vulnerability in help icons |
| CVE-2020-2230 |
unknown |
— |
1.0 |
|
|
|
4y ago |
Jenkins Cross-site Scripting vulnerability in project naming strategy |
