Ecosyste.ms: Advisories

An open API service providing security vulnerability metadata for many open source software ecosystems.

maven org.jenkins-ci.main:jenkins-core Security Advisories

Loading...
Critical
GSA_kwCzR0hTQS05Mm1yLTR3MnEtNDU3OM4AAbHa
Exposure of Sensitive Information to an Unauthorized Actor in Jenkins
Ecosystems: maven
Packages: org.jenkins-ci.main:jenkins-core
Source: GitHub Advisory Database
Published: almost 2 years ago
Moderate
GSA_kwCzR0hTQS12NzU5LTNmaDktODRteM4AAZq3
Jenkins directory traversal vulnerability
Ecosystems: maven
Packages: org.jenkins-ci.main:jenkins-core
Source: GitHub Advisory Database
Published: almost 2 years ago
Moderate
GSA_kwCzR0hTQS12ajZxLXYyaDctNnE1bc4AAZqz
Jenkins cross-site scripting (XSS) vulnerability
Ecosystems: maven
Packages: org.jenkins-ci.main:jenkins-core
Source: GitHub Advisory Database
Published: almost 2 years ago
Moderate
GSA_kwCzR0hTQS0zZ3A1LTkyaDUtaDg1Nc4AAZnO
Jenkins Path Traversal vulnerability
Ecosystems: maven
Packages: org.jenkins-ci.main:jenkins-core
Source: GitHub Advisory Database
Published: almost 2 years ago
Moderate
GSA_kwCzR0hTQS03ZjZ3LWZobXItajhocc4AAYy3
Jenkins HttpOnly flag not Set for session cookies
Ecosystems: maven
Packages: org.jenkins-ci.main:jenkins-core
Source: GitHub Advisory Database
Published: almost 2 years ago
Moderate
GSA_kwCzR0hTQS1nN2NmLXdnMjctcXc4N84AAYy2
Jenkins secure flag not set on session cookies
Ecosystems: maven
Packages: org.jenkins-ci.main:jenkins-core
Source: GitHub Advisory Database
Published: almost 2 years ago
Moderate
GSA_kwCzR0hTQS14M3JjLWN4djctNnhwNs4AAX4Y
Cross-site Scripting in Jenkins Core
Ecosystems: maven
Packages: org.jenkins-ci.main:jenkins-core
Source: GitHub Advisory Database
Published: almost 2 years ago
Moderate
GSA_kwCzR0hTQS1qZ3ByLXFydzItNmdwM84AAXvS
Exposure of Sensitive Information in Jenkins Core
Ecosystems: maven
Packages: org.jenkins-ci.main:jenkins-core
Source: GitHub Advisory Database
Published: almost 2 years ago
Critical
GSA_kwCzR0hTQS1qbXc3LXBoNnAtMzNjY84AAXvi
Exposure of Sensitive Information in Jenkins Core
Ecosystems: maven
Packages: org.jenkins-ci.main:jenkins-core
Source: GitHub Advisory Database
Published: almost 2 years ago
Moderate
GSA_kwCzR0hTQS04NTcyLTVqcmctbXg1Ms4AAXul
Exposure of Sensitive Information in Jenkins Core
Ecosystems: maven
Packages: org.jenkins-ci.main:jenkins-core
Source: GitHub Advisory Database
Published: almost 2 years ago
Moderate
GSA_kwCzR0hTQS01OWZtLTZ4M3EtcTNxNc4AAXuz
Missing permissions check in Jenkins Core
Ecosystems: maven
Packages: org.jenkins-ci.main:jenkins-core
Source: GitHub Advisory Database
Published: almost 2 years ago
Moderate
GSA_kwCzR0hTQS0zODU3LXhtMzgtam1xMs4AAXuy
Incorrect Authorization in Jenkins Core
Ecosystems: maven
Packages: org.jenkins-ci.main:jenkins-core
Source: GitHub Advisory Database
Published: almost 2 years ago
High
GSA_kwCzR0hTQS1yNXgzLTI0NDYtaHJwN84AAXbh
Race Condition in Jenkins
Ecosystems: maven
Packages: org.jenkins-ci.main:jenkins-core
Source: GitHub Advisory Database
Published: almost 2 years ago
Moderate
GSA_kwCzR0hTQS00NDY2LThqbTQtNDQ4cM4AAXaQ
Deserialization of Untrusted Data in Jenkins
Ecosystems: maven
Packages: org.jenkins-ci.main:jenkins-core
Source: GitHub Advisory Database
Published: almost 2 years ago
High
GSA_kwCzR0hTQS04NXdxLXBxaHAtaG1xNs4AAXaM
Cross-Site Request Forgery in Jenkins
Ecosystems: maven
Packages: org.jenkins-ci.main:jenkins-core
Source: GitHub Advisory Database
Published: almost 2 years ago
High
GSA_kwCzR0hTQS1yNTdmLTd4dzMtcTJyOc4AAXaG
Improper Authentication in Jenkins
Ecosystems: maven
Packages: org.jenkins-ci.main:jenkins-core
Source: GitHub Advisory Database
Published: almost 2 years ago
Moderate
GSA_kwCzR0hTQS04MjZmLTMycW0tdm0zas4AAUqE
Jenkins vulnerable to Cross-site Scripting
Ecosystems: maven
Packages: org.jenkins-ci.main:jenkins-core
Source: GitHub Advisory Database
Published: almost 2 years ago
Moderate
GSA_kwCzR0hTQS1jd2g5LWY4bTYtNnI2M84AAUje
Jenkins Cross-site Scripting vulnerability
Ecosystems: maven
Packages: org.jenkins-ci.main:jenkins-core
Source: GitHub Advisory Database
Published: almost 2 years ago
Moderate
GSA_kwCzR0hTQS0ycHA5LXI0cnYtNnA2as4AATgt
Exposure of Sensitive Information to an Unauthorized Actor in Jenkins
Ecosystems: maven
Packages: org.jenkins-ci.main:jenkins-core
Source: GitHub Advisory Database
Published: almost 2 years ago
Moderate
GSA_kwCzR0hTQS02NjdxLXZqNTgtcmo4OM4AATf_
Exposure of Sensitive Information to an Unauthorized Actor in Jenkins
Ecosystems: maven
Packages: org.jenkins-ci.main:jenkins-core
Source: GitHub Advisory Database
Published: almost 2 years ago
Moderate
GSA_kwCzR0hTQS1xNGNxLXI3aGctcHhxcc4AATf1
Improper Authentication in Jenkins
Ecosystems: maven
Packages: org.jenkins-ci.main:jenkins-core
Source: GitHub Advisory Database
Published: almost 2 years ago
Moderate
GSA_kwCzR0hTQS0yOHAzLW1jaHItOWZyas4AATf4
Deserialization of Untrusted Data in Jenkins
Ecosystems: maven
Packages: org.jenkins-ci.main:jenkins-core
Source: GitHub Advisory Database
Published: almost 2 years ago
Moderate
GSA_kwCzR0hTQS05amN2LXY0anAtdzNjcc4AATfy
Cross-site Scripting in Jenkins Core
Ecosystems: maven
Packages: org.jenkins-ci.main:jenkins-core
Source: GitHub Advisory Database
Published: almost 2 years ago
Moderate
GSA_kwCzR0hTQS1nNzh4LXhtdjgtMjN4cM4AATft
Exposure of Sensitive Information to an Unauthorized Actor in Jenkins
Ecosystems: maven
Packages: org.jenkins-ci.main:jenkins-core
Source: GitHub Advisory Database
Published: almost 2 years ago
Moderate
GSA_kwCzR0hTQS1odjQ1LTVqOWgtN2ZoZ84AATfx
Cross-site Scripting in Jenkins
Ecosystems: maven
Packages: org.jenkins-ci.main:jenkins-core
Source: GitHub Advisory Database
Published: almost 2 years ago
Moderate
GSA_kwCzR0hTQS1ycjZyLXA3cnctMzY5Y84AATfz
Session Fixation in Jenkins
Ecosystems: maven
Packages: org.jenkins-ci.main:jenkins-core
Source: GitHub Advisory Database
Published: almost 2 years ago
High
GSA_kwCzR0hTQS05OWhqLXBwZzMtMnh3Y84AATfv
Cross-Site Request Forgery in Jenkins
Ecosystems: maven
Packages: org.jenkins-ci.main:jenkins-core
Source: GitHub Advisory Database
Published: almost 2 years ago
Moderate
GSA_kwCzR0hTQS0zcHI4LXJmNjItZzg5M84AATfw
Path Traversal in Jenkins
Ecosystems: maven
Packages: org.jenkins-ci.main:jenkins-core
Source: GitHub Advisory Database
Published: almost 2 years ago
High
GSA_kwCzR0hTQS01M2pwLWdtd2MtandmNs4AATfu
Exposure of Sensitive Information to an Unauthorized Actor in Jenkins
Ecosystems: maven
Packages: org.jenkins-ci.main:jenkins-core
Source: GitHub Advisory Database
Published: almost 2 years ago
Moderate
GSA_kwCzR0hTQS1ocGg5LTl2Y3EtZjdncM4AATf0
Exposure of Sensitive Information to an Unauthorized Actor in Jenkins
Ecosystems: maven
Packages: org.jenkins-ci.main:jenkins-core
Source: GitHub Advisory Database
Published: almost 2 years ago
Low
GSA_kwCzR0hTQS1oOGM1LWM5MmctanE2eM4AATfr
Improper Input Validation in Jenkins
Ecosystems: maven
Packages: org.jenkins-ci.main:jenkins-core
Source: GitHub Advisory Database
Published: almost 2 years ago
Moderate
GSA_kwCzR0hTQS01aGZwLTk2NHctNXZnbc4AATfj
Improper Limitation of a Pathname to a Restricted Directory in Jenkins
Ecosystems: maven
Packages: org.kohsuke.stapler:stapler-parent, org.jenkins-ci.main:jenkins-core
Source: GitHub Advisory Database
Published: almost 2 years ago
Moderate
GSA_kwCzR0hTQS13cXY0LTlncjMtM3FnaM4AATfl
Exposure of Sensitive Information to an Unauthorized Actor in Jenkins
Ecosystems: maven
Packages: org.jenkins-ci.main:jenkins-core
Source: GitHub Advisory Database
Published: almost 2 years ago
Moderate
GSA_kwCzR0hTQS1mcTlmLTl3djktcmZtZ84AATfk
Improper Certificate Validation in Jenkins
Ecosystems: maven
Packages: org.jenkins-ci.main:jenkins-core
Source: GitHub Advisory Database
Published: almost 2 years ago
Moderate
GSA_kwCzR0hTQS1oOTcyLWN3anYtMnYzOc4AATfs
Exposure of Sensitive Information to an Unauthorized Actor in Jenkins
Ecosystems: maven
Packages: org.jenkins-ci.main:jenkins-core
Source: GitHub Advisory Database
Published: almost 2 years ago
High
GSA_kwCzR0hTQS1mN2Y2LXhyd2MtOWM1N84AATff
Improper Input Validation in Jenkins
Ecosystems: maven
Packages: org.jenkins-ci.main:jenkins-core
Source: GitHub Advisory Database
Published: almost 2 years ago
Moderate
GSA_kwCzR0hTQS01cHB4LXJndzIteGcyM84AATfi
Improper Neutralization of Input During Web Page Generation in Jenkins
Ecosystems: maven
Packages: org.jenkins-ci.main:jenkins-core
Source: GitHub Advisory Database
Published: almost 2 years ago
High
GSA_kwCzR0hTQS13ZmozLTUzNW0tcDZmeM4AATfc
Improper Input Validation in Jenkins
Ecosystems: maven
Packages: org.jenkins-ci.main:jenkins-core
Source: GitHub Advisory Database
Published: almost 2 years ago
High
GSA_kwCzR0hTQS1qNDcyLW1jcTItOTVwNs4AATfe
OS Command Injection in Jenkins
Ecosystems: maven
Packages: org.jenkins-ci.main:jenkins-core
Source: GitHub Advisory Database
Published: almost 2 years ago
Critical
GSA_kwCzR0hTQS0yeDloLWgzYzQtd3FxaM4AATaP
Improper Neutralization of Special Elements used in an LDAP Query in Jenkins
Ecosystems: maven
Packages: org.jenkins-ci.main:jenkins-core
Source: GitHub Advisory Database
Published: almost 2 years ago
Moderate
GSA_kwCzR0hTQS1jcHczLXg3Z2YtcDg3Ms4AATSW
Exposure of Sensitive Information to an Unauthorized Actor in Jenkins
Ecosystems: maven
Packages: org.jenkins-ci.main:jenkins-core
Source: GitHub Advisory Database
Published: almost 2 years ago
Moderate
GSA_kwCzR0hTQS1yMmpmLXJjNXYtdm1wds4AASyI
Incorrect Authorization in Jenkins
Ecosystems: maven
Packages: org.jenkins-ci.main:jenkins-core
Source: GitHub Advisory Database
Published: almost 2 years ago
Moderate
GSA_kwCzR0hTQS04cXBmLWZ2MzYtaDRyOM4AASyL
Infinite Loop in Jenkins Core
Ecosystems: maven
Packages: org.jenkins-ci.main:jenkins-core
Source: GitHub Advisory Database
Published: almost 2 years ago
High
GSA_kwCzR0hTQS0yNjMyLWgzMmotNnJnOc4AASyR
Missing Release of Resource after Effective Lifetime in Jenkins
Ecosystems: maven
Packages: org.jenkins-ci.main:jenkins-core
Source: GitHub Advisory Database
Published: almost 2 years ago
Moderate
GSA_kwCzR0hTQS05Y2p2LTkzZzctYzZtds4AASlC
Loop with Unreachable Exit Condition in Jenkins
Ecosystems: maven
Packages: org.jenkins-ci.main:jenkins-core
Source: GitHub Advisory Database
Published: almost 2 years ago
High
GSA_kwCzR0hTQS00amhtLTVmN2ctNzVmcM4AASkQ
Improper Limitation of a Pathname to a Restricted Directory in Jenkins
Ecosystems: maven
Packages: org.jenkins-ci.main:jenkins-core
Source: GitHub Advisory Database
Published: almost 2 years ago
Moderate
GSA_kwCzR0hTQS00aDQ3LWgzY3ItMjN3aM4AASkE
Improper Authorization in Jenkins
Ecosystems: maven
Packages: org.jenkins-ci.main:jenkins-core
Source: GitHub Advisory Database
Published: almost 2 years ago
Moderate
GSA_kwCzR0hTQS1yOXEyLTNyNngtcW1ncM4AARcs
Inadequate Encryption Strength in Jenkins
Ecosystems: maven
Packages: org.jenkins-ci.main:jenkins-core
Source: GitHub Advisory Database
Published: almost 2 years ago
Moderate
GSA_kwCzR0hTQS1mZmdnLXZwaGgtdjI3M84AARc6
Incomplete List of Disallowed Inputs in Jenkins
Ecosystems: maven
Packages: org.jenkins-ci.main:jenkins-core
Source: GitHub Advisory Database
Published: almost 2 years ago
Moderate
GSA_kwCzR0hTQS13ajVjLWo2NTYtaDVmd84AARcr
Exposure of Sensitive Information to an Unauthorized Actor in Jenkins
Ecosystems: maven
Packages: org.jenkins-ci.main:jenkins-core
Source: GitHub Advisory Database
Published: almost 2 years ago
Moderate
GSA_kwCzR0hTQS1wd3Y2LTg3MmMtZ2NnNs4AARck
Cross-Site Request Forgery in Jenkins
Ecosystems: maven
Packages: org.jenkins-ci.main:jenkins-core
Source: GitHub Advisory Database
Published: almost 2 years ago
High
GSA_kwCzR0hTQS1md3FyLTNwdnAtcGp3cc4AARcc
Deserialization of Untrusted Data in Jenkins
Ecosystems: maven
Packages: org.jenkins-ci.main:jenkins-core
Source: GitHub Advisory Database
Published: almost 2 years ago
Moderate
GSA_kwCzR0hTQS12MjIyLXcybXcteGpjNs4AARcp
Exposure of Sensitive Information to an Unauthorized Actor in Jenkins
Ecosystems: maven
Packages: org.jenkins-ci.main:jenkins-core
Source: GitHub Advisory Database
Published: almost 2 years ago
Low
GSA_kwCzR0hTQS14NTVwLTY1MjYteG1tcM4AARct
Exposure of Sensitive Information to an Unauthorized Actor in Jenkins
Ecosystems: maven
Packages: org.jenkins-ci.main:jenkins-core
Source: GitHub Advisory Database
Published: almost 2 years ago
Moderate
GSA_kwCzR0hTQS02OTY3LTl2dnYtNGNtbc4AARcj
Exposure of Sensitive Information to an Unauthorized Actor in Jenkins
Ecosystems: maven
Packages: org.jenkins-ci.main:jenkins-core
Source: GitHub Advisory Database
Published: almost 2 years ago
Moderate
GSA_kwCzR0hTQS00Mm02LTd4ZmYtOXY5bc4AARcE
Improper Neutralization of Input During Web Page Generation in Jenkins
Ecosystems: maven
Packages: org.jenkins-ci.main:jenkins-core
Source: GitHub Advisory Database
Published: almost 2 years ago
Moderate
GSA_kwCzR0hTQS13ZjlnLXJoNzYtNmp2cs4AARcd
Incorrect Permission Assignment for Critical Resource in Jenkins
Ecosystems: maven
Packages: org.jenkins-ci.main:jenkins-core
Source: GitHub Advisory Database
Published: almost 2 years ago
Moderate
GSA_kwCzR0hTQS1tOTNoLTVxbXgtcHBoZ84AARcf
Improper Authentication in Jenkins
Ecosystems: maven
Packages: org.jenkins-ci.main:jenkins-core
Source: GitHub Advisory Database
Published: almost 2 years ago
Moderate
GSA_kwCzR0hTQS1qZmY1LTU1eGotNGpjcc4AARcm
Improper Neutralization of Input During Web Page Generation in Jenkins
Ecosystems: maven
Packages: org.jenkins-ci.main:jenkins-core
Source: GitHub Advisory Database
Published: almost 2 years ago
Moderate
GSA_kwCzR0hTQS1wOHg4LXA0NzMtbW1tds37rg
Missing Authorization in Jenkins
Ecosystems: maven
Packages: org.jenkins-ci.main:jenkins-core
Source: GitHub Advisory Database
Published: almost 2 years ago
Moderate
GSA_kwCzR0hTQS0zMjk3LTk0NHgtajd4N835TA
Incorrect Authorization in Jenkins Core
Ecosystems: maven
Packages: org.jenkins-ci.main:jenkins-core
Source: GitHub Advisory Database
Published: almost 2 years ago
Moderate
GSA_kwCzR0hTQS03cjRoLTJoMjMtNmpxOc3z7g
Incorrect Authorization in Jenkins
Ecosystems: maven
Packages: org.jenkins-ci.main:jenkins-core
Source: GitHub Advisory Database
Published: almost 2 years ago
High
GSA_kwCzR0hTQS04cXhwLWc4anYtcDM3eM3rvA
Improper Authorization in Jenkins Core
Ecosystems: maven
Packages: org.jenkins-ci.main:jenkins-core
Source: GitHub Advisory Database
Published: almost 2 years ago
High
GSA_kwCzR0hTQS02cmg1LTIzaHgtajQ1Ms3rtw
Improper Authorization in Jenkins Core
Ecosystems: maven
Packages: org.jenkins-ci.main:jenkins-core
Source: GitHub Advisory Database
Published: almost 2 years ago
Moderate
GSA_kwCzR0hTQS1yNjljLTVqN2Mtdm02cc3o9A
Cross-site Scripting in Jenkins
Ecosystems: maven
Packages: org.jenkins-ci.main:jenkins-core
Source: GitHub Advisory Database
Published: almost 2 years ago
Moderate
GSA_kwCzR0hTQS02bXY5LWhjeDUtN21oaM3mmQ
Server-Side Request Forgery in Jenkins
Ecosystems: maven
Packages: org.jenkins-ci.main:jenkins-core
Source: GitHub Advisory Database
Published: almost 2 years ago
Critical
GSA_kwCzR0hTQS0yNndjLTN3cXAtZzNycM3mng
Deserialization of Untrusted Data in Jenkins
Ecosystems: maven
Packages: org.jenkins-ci.main:jenkins-core
Source: GitHub Advisory Database
Published: almost 2 years ago
Moderate
GSA_kwCzR0hTQS0ydzR4LXJ4cDctZ3JnN83mjg
Exposure of Sensitive Information to an Unauthorized Actor in Jenkins
Ecosystems: maven
Packages: org.jenkins-ci.main:jenkins-core
Source: GitHub Advisory Database
Published: almost 2 years ago
High
GSA_kwCzR0hTQS1xZjM4LWYyZnItcTR4Oc3mcA
Improper Input Validation in Jenkins
Ecosystems: maven
Packages: org.jenkins-ci.main:jenkins-core
Source: GitHub Advisory Database
Published: almost 2 years ago
Moderate
GSA_kwCzR0hTQS14Nmp3LTJmMjMtbWM1as3mkg
Exposure of Sensitive Information to an Unauthorized Actor in Jenkins
Ecosystems: maven
Packages: org.jenkins-ci.main:jenkins-core
Source: GitHub Advisory Database
Published: almost 2 years ago
Moderate
GSA_kwCzR0hTQS03NTkyLTkzcm0tNmdweM3mbg
Injection in Jenkins
Ecosystems: maven
Packages: org.jenkins-ci.main:jenkins-core
Source: GitHub Advisory Database
Published: almost 2 years ago
Moderate
GSA_kwCzR0hTQS02NDU2LXhqbTUtZzNwZ83mlQ
Cross-site scripting vulnerability exists in Jenkins and Stapler Plugin
Ecosystems: maven
Packages: org.kohsuke.stapler:stapler-parent, org.jenkins-ci.main:jenkins-core
Source: GitHub Advisory Database
Published: almost 2 years ago
Moderate
GSA_kwCzR0hTQS13bXI4LTI1ZmYtZ2dwas3mkQ
Incorrect Authorization in Jenkins
Ecosystems: maven
Packages: org.jenkins-ci.main:jenkins-core
Source: GitHub Advisory Database
Published: almost 2 years ago
Moderate
GSA_kwCzR0hTQS1xcGc5LTgzZnYteDljaM3mcg
Improper Neutralization of Input During Web Page Generation in Jenkins
Ecosystems: maven
Packages: org.jenkins-ci.main:jenkins-core
Source: GitHub Advisory Database
Published: almost 2 years ago
Moderate
GSA_kwCzR0hTQS1wZ3h2LWg5NjctZncycc3mkA
Improper Neutralization of Input During Web Page Generation in Jenkins
Ecosystems: maven
Packages: org.jenkins-ci.main:jenkins-core
Source: GitHub Advisory Database
Published: almost 2 years ago
High
GSA_kwCzR0hTQS03NDJqLWpjZnItMjN3M83mkw
Insufficient Session Expiration in Jenkins
Ecosystems: maven
Packages: org.jenkins-ci.main:jenkins-core
Source: GitHub Advisory Database
Published: almost 2 years ago
Moderate
GSA_kwCzR0hTQS01cDU5LXY1d20tNzd2NM3mlA
Improper Limitation of a Pathname to a Restricted Directory in Jenkins
Ecosystems: maven
Packages: org.jenkins-ci.main:jenkins-core
Source: GitHub Advisory Database
Published: almost 2 years ago
High
GSA_kwCzR0hTQS14NjQ2LW03eDItZ2NwN83mbw
Path Traversal in Jenkins
Ecosystems: maven
Packages: org.jenkins-ci.main:jenkins-core
Source: GitHub Advisory Database
Published: almost 2 years ago
Moderate
GSA_kwCzR0hTQS1yZ21qLW1jY2otaDlteM3mbQ
Cross-Site Request Forgery in Jenkins
Ecosystems: maven
Packages: org.jenkins-ci.main:jenkins-core
Source: GitHub Advisory Database
Published: almost 2 years ago
High
GSA_kwCzR0hTQS1qOHF2LW1qNHItNmZ3NM3mdQ
Improper Input Validation in Jenkins
Ecosystems: maven
Packages: org.jenkins-ci.main:jenkins-core
Source: GitHub Advisory Database
Published: almost 2 years ago
Critical
GSA_kwCzR0hTQS1oaHBtLTVjcDItaGc0eM3mcw
Deserialization of Untrusted Data in Jenkins
Ecosystems: maven
Packages: org.jenkins-ci.main:jenkins-core
Source: GitHub Advisory Database
Published: almost 2 years ago
Moderate
GSA_kwCzR0hTQS1wMjY1LXhyOTgtM3Ztcs3mbA
Incorrect Authorization in Jenkins
Ecosystems: maven
Packages: org.jenkins-ci.main:jenkins-core
Source: GitHub Advisory Database
Published: almost 2 years ago
Moderate
GSA_kwCzR0hTQS1xNWY4LWZ4cngtcHc2Zs3iYg
Jenkins subject to Cross-site Scripting
Ecosystems: maven
Packages: org.jenkins-ci.main:jenkins-core
Source: GitHub Advisory Database
Published: almost 2 years ago
Moderate
GSA_kwCzR0hTQS03OGNqLTJtMjktcTVyOc3ibA
Jenkins Cross-Site Request Forgery vulnerability
Ecosystems: maven
Packages: org.jenkins-ci.main:jenkins-core
Source: GitHub Advisory Database
Published: almost 2 years ago
Moderate
GSA_kwCzR0hTQS1ycWhnLWN4ZnItOHhxd83iaQ
Jenkins Cross-Site Request Forgery vulnerability
Ecosystems: maven
Packages: org.jenkins-ci.main:jenkins-core
Source: GitHub Advisory Database
Published: almost 2 years ago
Low
GSA_kwCzR0hTQS1qd2ZyLWg2anAtOXAyZ83iFw
Jenkins allows attackers to obtain the master cryptographic key
Ecosystems: maven
Packages: org.jenkins-ci.main:jenkins-core
Source: GitHub Advisory Database
Published: almost 2 years ago
High
GSA_kwCzR0hTQS1wY2hwLWM1dzgtNDdnY81A1Q
Hash collision attack vulnerability in Jenkins
Ecosystems: maven
Packages: org.jenkins-ci.main:jenkins-core
Source: GitHub Advisory Database
Published: almost 2 years ago
Moderate
GSA_kwCzR0hTQS0zNHd4LXgydzktdnFtM80qIg
DoS vulnerability in bundled XStream library in Jenkins Core
Ecosystems: maven
Packages: org.jenkins-ci.main:jenkins-core
Source: GitHub Advisory Database
Published: about 2 years ago
Moderate
GSA_kwCzR0hTQS1wOTJxLTdmaGgtbXEzNc0img
Cross-Site Request Forgery in Jenkins
Ecosystems: maven
Packages: org.jenkins-ci.main:jenkins-core
Source: GitHub Advisory Database
Published: about 2 years ago
Statistics
Advisories: 17,222
Packages: 7,996
Repositories: 4
Ecosystems: 12
Filter by Package
org.jenkins-ci.main:jenkins-core 189 org.apache.tomcat:tomcat 146 com.fasterxml.jackson.core:jackson-databind 69 org.apache.struts:struts2-core 55 com.liferay.portal:release.portal.bom 45 org.keycloak:keycloak-core 43 com.thoughtworks.xstream:xstream 36 com.jfinal:jfinal 36 net.mingsoft:ms-mcms 35 org.xwiki.platform:xwiki-platform-oldcore 31 org.elasticsearch:elasticsearch 31 org.jenkins-ci.plugins:script-security 30 org.apache.tomcat.embed:tomcat-embed-core 28 io.undertow:undertow-core 26 org.keycloak:keycloak-parent 26 org.apache.solr:solr-core 25 org.eclipse.jetty:jetty-server 23 org.springframework.security:spring-security-core 23 org.apache.nifi:nifi 22 org.apache.openmeetings:openmeetings-parent 21 org.cloudfoundry.identity:cloudfoundry-identity-server 20 org.springframework:spring-core 19 org.bouncycastle:bcprov-jdk14 18 com.liferay.portal:release.dxp.bom 18 com.vaadin:vaadin-bom 18 org.keycloak:keycloak-services 17 org.xwiki.platform:xwiki-platform-web-templates 17 org.apache.geode:geode-core 17 org.apache.activemq:activemq-client 16 org.bouncycastle:bcprov-jdk15 16 org.apache.dubbo:dubbo 16 org.apache.jspwiki:jspwiki-main 15 org.apache.struts.xwork:xwork-core 15 org.xwiki.platform:xwiki-platform-web 14 org.apache.cxf:cxf 13 org.apache.hadoop:hadoop-main 13 org.apache.inlong:manager-pojo 13 com.vaadin:flow-server 12 org.apache.dolphinscheduler:dolphinscheduler 12 org.jenkins-ci.plugins.workflow:workflow-cps 12 org.jenkins-ci.plugins:git 12 org.apache.james:james-server 11 org.apache.cxf:cxf-core 11 org.jenkins-ci.plugins:email-ext 11 org.apache.camel:camel-core 11 org.apache.jspwiki:jspwiki-war 11 org.apache.commons:commons-compress 11 org.mortbay.jetty:jetty 11 org.apache.tika:tika-core 11 org.apache.ranger:ranger 11 org.jeecgframework.boot:jeecg-boot-common 11 org.apache.hadoop:hadoop-common 11 org.igniterealtime.openfire:parent 11 com.xuxueli:xxl-job 11 org.jeecgframework.boot:jeecg-boot-parent 11 org.jboss.netty:netty 10 io.netty:netty 10 org.xwiki.platform:xwiki-platform-administration-ui 10 org.apache.inlong:manager-service 10 org.jenkins-ci.plugins.workflow:workflow-cps-global-lib 10 org.apache.archiva:archiva 9 org.jenkins-ci.plugins:active-directory 9 org.opennms:opennms 9 org.apache.tapestry:tapestry-core 9 org.opencrx:opencrx-core-models 9 org.bouncycastle:bcprov-jdk15on 9 org.craftercms:crafter-studio 9 cn.hutool:hutool-core 9 org.apache.shiro:shiro-core 9 com.sonyericsson.jenkins.plugins.bfa:build-failure-analyzer 9 io.jenkins:configuration-as-code 9 org.apache.xmlgraphics:batik 9 org.springframework:spring-webmvc 9 jquery 9 jquery-rails 9 org.jenkins-ci.plugins:config-file-provider 9 org.webjars.npm:jquery 9 org.apache.hive:hive 9 org.jenkins-ci.plugins:electricflow 9 org.opencms:opencms-core 8 org.graylog2:graylog2-server 8 org.apache.zeppelin:zeppelin 8 org.apache.hive:hive-exec 8 com.hazelcast:hazelcast 8 org.apache.pdfbox:pdfbox 8 jQuery 8 org.apache.kylin:kylin 8 org.apache.ozone:ozone-main 8 org.postgresql:postgresql 8 org.jenkins-ci.plugins:ec2 8 org.apache.ambari:ambari 8 io.jenkins.blueocean:blueocean 8 org.springframework:spring-web 8 mysql:mysql-connector-java 8 org.yaml:snakeyaml 8 org.apache.santuario:xmlsec 8 jquery-ui 7 jquery-ui-rails 7 org.jenkins-ci.plugins:rundeck 7 io.jenkins.plugins:miniorange-saml-sp 7 net.opentsdb:opentsdb 7 org.webjars.npm:jquery-ui 7 org.apache.cxf:apache-cxf 7 org.apache.inlong:manager-web 7 org.jenkins-ci.plugins:artifactory 7 org.jenkins-ci.plugins:jobConfigHistory 7 org.apache.tika:tika 7 org.apache.activemq:activemq-parent 7 org.jenkins-ci.plugins:openshift-deployer 7 org.owasp.esapi:esapi 7 jQuery.UI.Combined 7 io.jenkins.plugins:cavisson-ns-nd-integration 7 org.jboss.resteasy:resteasy-client 7 org.owasp.antisamy:antisamy 7 org.apache.hive:hive-service 7 org.apache.poi:poi 7 org.apache.atlas:atlas-common 7 org.apache.karaf:apache-karaf 7 io.jenkins.plugins:warnings-ng 7 org.jenkins-ci.plugins:subversion 7 org.apache.logging.log4j:log4j-core 7 rubygems-update 7 org.jruby:jruby-stdlib 7 io.dataease:dataease-plugin-common 7 org.silverpeas.core:silverpeas-core-web 7 org.jenkins-ci.plugins:mercurial 7 org.apache.linkis:linkis 7 org.apache.spark:spark-core_2.11 7 org.jeecgframework.boot:jeecg-boot-base 7 io.atomix:atomix 7 org.apache.derby:derby 7 org.jenkins-ci.plugins:ec2-deployment-dashboard 6 org.opencastproject:opencast-kernel 6 com.jflyfox:jflyfox_jfinal 6 org.xwiki.commons:xwiki-commons-xml 6 org.apache.mesos:mesos 6 org.apache.syncope:syncope-core 6 com.sonyericsson.hudson.plugins.gerrit:gerrit-trigger 6 org.apache.spark:spark-core_2.10 6 org.apache.storm:storm-core 6 axis:axis 6 org.jenkins-ci.plugins:pipeline-maven 6 org.apache.httpcomponents:httpclient 6 org.apache.solr:solr-parent 6 org.apache.axis:axis 6 org.jenkins-ci.plugins:repository-connector 6 org.apache.shenyu:shenyu-common 6 org.jenkins-ci.plugins:gitlab-oauth 6 org.opensearch.plugin:opensearch-security 6 org.apache.struts:struts2-rest-plugin 6 tech.powerjob:powerjob 6 hudson.plugins:project-inheritance 6 com.xebialabs.deployit.ci:deployit-plugin 6 cn.hutool:hutool-json 6 io.netty:netty-codec-http 6 org.jenkins-ci.plugins:azure-vm-agents 6 org.jenkins-ci.plugins:fortify-on-demand-uploader 6 io.netty:netty-handler 6 org.apache.tomcat:tomcat-catalina 6 de.tum.in.ase:artemis-java-test-sandbox 6 org.springframework.amqp:spring-amqp 6 org.csanchez.jenkins.plugins:kubernetes 6 commons-fileupload:commons-fileupload 6 xerces:xercesImpl 5 org.apache.inlong:manager-dao 5 org.jenkins-ci.plugins:publish-over-ssh 5 org.jenkins-ci.plugins:websphere-deployer 5 org.biouno:uno-choice 5 org.xwiki.platform:xwiki-platform-flamingo-skin-resources 5 org.jenkins-ci.plugins.m2release:m2release 5 org.codehaus.jettison:jettison 5 io.projectreactor.netty:reactor-netty-http 5 org.opennms:opennms-webapp 5 org.jenkins-ci.plugins:gitlab-plugin 5 edu.stanford.nlp:stanford-corenlp 5 org.jenkins-ci.plugins:google-login 5 org.jenkinsci.plugins:octoperf 5 org.jenkins-ci.plugins:azure-ad 5 org.jenkins-ci.plugins:ghprb 5 org.apache.cassandra:cassandra-all 5 org.jenkins-ci.plugins:codedx 5 com.ruoyi:ruoyi 5 org.jenkins-ci.plugins:junit 5 org.apache.ignite:ignite-core 5 org.jenkins-ci.plugins:matrix-project 5 com.mabl.integration.jenkins:mabl-integration 5 org.springframework.security.oauth:spring-security-oauth2 5 org.apache.hadoop:hadoop-client 5 org.apache.kylin:kylin-server-base 5 org.jboss.resteasy:resteasy-bom 5 org.jenkins-ci.plugins:delphix 5 info.magnolia:magnolia-core 5 org.dspace:dspace-jspui 5 org.jeecgframework.boot:jeecg-boot-base-core 5 org.jenkins-ci.plugins:scriptler 5 org.neo4j.procedure:apoc 5 org.apache.druid:druid 5 org.xwiki.platform:xwiki-platform-appwithinminutes-ui 5 org.jenkins-ci.plugins:openid 5 org.jenkins-ci.plugins:support-core 5