GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
300 advisories
Missing permission check in Jenkins Cloud Statistics Plugin
Moderate
CVE-2021-21631
was published
for
org.jenkins-ci.plugins:cloud-stats
(Maven)
May 24, 2022
Missing permission checks in Jenkins CloudBees AWS Credentials Plugin allows enumerating credentials IDs
Moderate
CVE-2021-21625
was published
for
org.jenkins-ci.plugins:aws-credentials
(Maven)
May 24, 2022
Missing permission checks in Jenkins Warnings Next Generation Plugin allow listing workspace contents
Moderate
CVE-2021-21626
was published
for
io.jenkins.plugins:warnings-ng
(Maven)
May 24, 2022
Missing permission checks in Jenkins Chaos Monkey Plugin
Moderate
CVE-2020-2323
was published
for
io.jenkins.plugins:chaos-monkey
(Maven)
May 24, 2022
Missing permission checks in Jenkins Ansible Plugin allow enumerating credentials IDs
Moderate
CVE-2020-2310
was published
for
org.jenkins-ci.plugins:ansible
(Maven)
May 24, 2022
Missing permission check in Jenkins AWS Global Configuration Plugin allows replacing plugin configuration
Moderate
CVE-2020-2311
was published
for
io.jenkins.plugins:aws-global-configuration
(Maven)
May 24, 2022
Missing Authorization in Jenkins Kubernetes Plugin
Moderate
CVE-2020-2308
was published
for
org.csanchez.jenkins.plugins:kubernetes
(Maven)
May 24, 2022
Missing permission checks in Jenkins Azure Key Vault Plugin allow enumerating credentials IDs
Moderate
CVE-2020-2313
was published
for
org.jenkins-ci.plugins:azure-keyvault
(Maven)
May 24, 2022
Missing authorization in Jenkins Kubernetes Plugin
Moderate
CVE-2020-2309
was published
for
org.csanchez.jenkins.plugins:kubernetes
(Maven)
May 24, 2022
Missing Authorization in Jenkins Mercurial Plugin
Moderate
CVE-2020-2306
was published
for
org.jenkins-ci.plugins:mercurial
(Maven)
May 24, 2022
Missing permission check in Jenkins Active Directory Plugin allows accessing domain health check page
Moderate
CVE-2020-2302
was published
for
org.jenkins-ci.plugins:active-directory
(Maven)
May 24, 2022
Missing permission checks in Jenkins Maven Cascade Release Plugin
Moderate
CVE-2020-2294
was published
for
com.barchart.jenkins:maven-release-cascade
(Maven)
May 24, 2022
Missing permission check in Jenkins Liquibase Runner Plugin allows enumerating credentials IDs
Moderate
CVE-2020-2285
was published
for
org.jenkins-ci.plugins:liquibase-runner
(Maven)
May 24, 2022
Missing permission check in Jenkins Implied Labels Plugin allows reconfiguring the plugin
Moderate
CVE-2020-2282
was published
for
org.jenkins-ci.plugins:implied-labels
(Maven)
May 24, 2022
Missing permission checks in Jenkins ElasTest Plugin
Moderate
CVE-2020-2272
was published
for
org.jenkins-ci.plugins:elastest
(Maven)
May 24, 2022
Missing permission checks in MongoDB Plugin
Moderate
CVE-2020-2267
was published
for
org.jenkins-ci.plugins:mongodb
(Maven)
May 24, 2022
Missing permission check in Perfecto Plugin
Moderate
CVE-2020-2260
was published
for
io.jenkins.plugins:perfecto
(Maven)
May 24, 2022
Missing permission check in Blue Ocean Plugin
Moderate
CVE-2020-2255
was published
for
io.jenkins.blueocean:blueocean
(Maven)
May 24, 2022
Missing permission checks in Jenkins Database Plugin
Moderate
CVE-2020-2242
was published
for
org.jenkins-ci.plugins:database
(Maven)
May 24, 2022
Missing permission checks in Zephyr for JIRA Test Management Plugin
Moderate
CVE-2020-2216
was published
for
org.jenkins-ci.plugins:zephyr-for-jira-test-management
(Maven)
May 24, 2022
Missing permission checks in Jenkins Fortify on Demand Plugin
Moderate
CVE-2020-2204
was published
for
org.jenkins-ci.plugins:fortify-on-demand-uploader
(Maven)
May 24, 2022
Users with Overall/Read access could enumerate credentials IDs in Jenkins Fortify on Demand Plugin
Moderate
CVE-2020-2202
was published
for
org.jenkins-ci.plugins:fortify-on-demand-uploader
(Maven)
May 24, 2022
ProTip!
Advisories are also available from the
GraphQL API