Security Intelligence
Feed

Real-time CVE tracking, exploit analysis, and vulnerability intelligence curated for security professionals.

243 New today

65,336 Total advisories

Live Monitoring

Daily Security Trends (Last 14 Days)

336

Jun 12

Jun 13

Jun 14

443

Jun 15

630

Jun 16

464

Jun 17

Jun 18

352

Jun 19

Jun 20

104

Jun 21

317

Jun 22

294

Jun 23

355

Jun 24

Jun 25

Critical

High

Medium

Low

Latest

CVE CVSS 5.4

CVE-2026-57305_CVE-2026-57305

A cross-site request forgery (CSRF) vulnerability in Jenkins Assembla Plugin 1.4 and earlier allows attackers to connect to an attacker-specified URL using an attacker-specified username and password.

CVE-2026-57305 Jenkins Project Jenkins Assembla Plugin

Jun 24, 2026

Read analysis

Recent Advisories

Severity	ID	Title	Vendor	Product	Date	Type
MEDIUM 5.4	CVE-2026-57304	CVE-2026-57304_CVE-2026-57304 A missing permission check in Jenkins Assembla Plugin 1.4 and earlier allows attackers with Overall/Read permission to connect to an attacker-speci...	Jenkins Project	Jenkins Assembla Plugin	Jun 24, 2026	CVE
HIGH 7.1	CVE-2026-57303	CVE-2026-57303_CVE-2026-57303 Jenkins Assembla Plugin 1.4 and earlier does not configure its XML parser to prevent XML external entity (XXE) attacks, allowing attackers able to ...	Jenkins Project	Jenkins Assembla Plugin	Jun 24, 2026	CVE
MEDIUM 4.3	CVE-2026-57302	CVE-2026-57302_CVE-2026-57302 Jenkins FitNesse Plugin 1.36 and earlier stores passwords unencrypted in job config.xml files on the Jenkins controller, where they can be viewed b...	Jenkins Project	Jenkins FitNesse Plugin 1.36	Jun 24, 2026	CVE
HIGH 8.8	CVE-2026-57301	CVE-2026-57301_CVE-2026-57301 Jenkins OWASP ZAP Plugin 1.0.7 and earlier performs build operations on the Jenkins controller rather than the assigned agent, allowing attackers w...	Jenkins Project	Jenkins OWASP ZAP Plugin 1.0.7	Jun 24, 2026	CVE
MEDIUM 4.3	CVE-2026-57300	CVE-2026-57300_CVE-2026-57300 A missing permission check in Jenkins MCP Server Plugin 0.177.v629fdb_2557fe and earlier allows attackers with Item/Read permission to read the Pip...	Jenkins Project	Jenkins MCP Server Plugin 0.172.174.v9f72da_90a_710	Jun 24, 2026	CVE
MEDIUM 5.4	CVE-2026-57298	CVE-2026-57298_CVE-2026-57298 A cross-site request forgery (CSRF) vulnerability in Jenkins Contrast Continuous Application Security Plugin 3.11 and earlier allows attackers to h...	Jenkins Project	Jenkins Contrast Continuous Application Security Plugin	Jun 24, 2026	CVE
HIGH 8.8	CVE-2026-57296	CVE-2026-57296_CVE-2026-57296 Jenkins External Workspace Manager Plugin 1.3.2 and earlier does not reject path traversal sequences in the custom workspace path provided to the e...	Jenkins Project	Jenkins External Workspace Manager Plugin 1.3.2	Jun 24, 2026	CVE
MEDIUM 5.4	CVE-2026-57295	CVE-2026-57295_CVE-2026-57295 A cross-site request forgery (CSRF) vulnerability in Jenkins EC2 Fleet Plugin 4.2.3.539.v8fedff2a_81c3 and earlier allows attackers to connect to a...	Jenkins Project	Jenkins EC2 Fleet Plugin	Jun 24, 2026	CVE
MEDIUM 5.4	CVE-2026-57294	CVE-2026-57294_CVE-2026-57294 A missing permission check in Jenkins EC2 Fleet Plugin 4.2.3.539.v8fedff2a_81c3 and earlier allows attackers with Overall/Read permission to connec...	Jenkins Project	Jenkins EC2 Fleet Plugin	Jun 24, 2026	CVE

Security IntelligenceFeed

Daily Security Trends (Last 14 Days)

CVE-2026-57305_CVE-2026-57305

Recent Advisories

CVE-2026-57304_CVE-2026-57304

CVE-2026-57303_CVE-2026-57303

CVE-2026-57302_CVE-2026-57302

CVE-2026-57301_CVE-2026-57301

CVE-2026-57300_CVE-2026-57300

CVE-2026-57298_CVE-2026-57298

CVE-2026-57296_CVE-2026-57296

CVE-2026-57295_CVE-2026-57295

CVE-2026-57294_CVE-2026-57294

Protect Your Attack Surface with RedGem

Security Intelligence
Feed