org.jenkins-ci.main:jenkins-core vulnerabilities

Browse known CVEs and advisories by package and ecosystem. Severity tells you the worst case. What determines real risk is whether the vulnerable code actually runs in your applications.

Get a demo

Browse by ecosystem

npmPyPIMavenGoRubyGemsCargoNuGetComposerpubSwiftGitHub Actions
CVE-IDSeverityPackage summary
CVE-2015-1810Mediumorg.jenkins-ci.main:jenkins-core: Jenkins does not Restrict Reserved Names Allowing for Privilege Escalation CVE-2015-1806Mediumorg.jenkins-ci.main:jenkins-core: Jenkins allows for Privilege Escalation by Remote Authenticated UsersCVE-2014-3680Mediumorg.jenkins-ci.main:jenkins-core: Jenkins Exposure of Sensitive Information to an Unauthorized Actor vulnerabilityCVE-2015-1813Loworg.jenkins-ci.main:jenkins-core: Jenkins allows Cross-Site Scripting (XSS)CVE-2015-1812Mediumorg.jenkins-ci.main:jenkins-core: Jenkins Cross-site Scripting vulnerabilityCVE-2015-1808Loworg.jenkins-ci.main:jenkins-core: Jenkins Vulnerable to Denial of Service (DoS)CVE-2015-1814Mediumorg.jenkins-ci.main:jenkins-core: Jenkins allows for Privilege Escalation by Remote Authenticated UsersCVE-2013-2034Mediumorg.jenkins-ci.main:jenkins-core: Jenkins Cross-Site Request Forgery vulnerabilitiesCVE-2017-1000362Criticalorg.jenkins-ci.main:jenkins-core: Exposure of Sensitive Information to an Unauthorized Actor in JenkinsCVE-2013-5573Loworg.jenkins-ci.main:jenkins-core: Jenkins allows Cross-Site Scripting (XSS) in User ConfigurationCVE-2014-2059Mediumorg.jenkins-ci.main:jenkins-core: Jenkins directory traversal vulnerabilityCVE-2014-2067Mediumorg.jenkins-ci.main:jenkins-core: Jenkins cross-site scripting (XSS) vulnerabilityCVE-2014-3664Mediumorg.jenkins-ci.main:jenkins-core: Jenkins Path Traversal vulnerabilityCVE-2014-9635Mediumorg.jenkins-ci.main:jenkins-core: Jenkins HttpOnly flag not Set for session cookiesCVE-2014-9634Mediumorg.jenkins-ci.main:jenkins-core: Jenkins secure flag not set on session cookiesCVE-2017-17383Mediumorg.jenkins-ci.main:jenkins-core: Cross-site Scripting in Jenkins CoreCVE-2016-0789Mediumorg.jenkins-ci.main:jenkins-core: Jenkins has CRLF Injection Vulnerability in the CLICVE-2016-0788Criticalorg.jenkins-ci.main:jenkins-core: Jenkins allows Execution of Code by Opening a JRMP ListenerCVE-2016-0790Mediumorg.jenkins-ci.main:jenkins-core: Exposure of Sensitive Information in Jenkins CoreCVE-2016-0792Highorg.jenkins-ci.main:jenkins-core: Jenkins allows Deserialization of Untrusted Data via an XML FileCVE-2016-0791Criticalorg.jenkins-ci.main:jenkins-core: Exposure of Sensitive Information in Jenkins CoreCVE-2016-3721Mediumorg.jenkins-ci.main:jenkins-core: Jenkins allows Remote Users to Inject Build ParametersCVE-2016-3723Mediumorg.jenkins-ci.main:jenkins-core: Exposure of Sensitive Information in Jenkins CoreCVE-2016-3724Mediumorg.jenkins-ci.main:jenkins-core: Jenkins Exposes Sensitive Information from Job ConfigurationCVE-2016-3725Mediumorg.jenkins-ci.main:jenkins-core: Missing permissions check in Jenkins Core

Stop the waste.
Protect your environment with Kodem.