Jenkins Git_parameter
6 CVEs affecting Jenkins Git_parameter. Latest disclosed: 2026-06-24. Critical: 0, High: 1.
| CVE | Severity | Score | Published | Summary |
|---|---|---|---|---|
CVE-2025-53652 | High | 8.2 | 2025-07-09 | Jenkins Git Parameter Plugin 439.vb_0e46ca_14534 and earlier does not validate that the Git parameter value submitted to the build matches one of the offered c… |
CVE-2022-29040 | Medium | 5.4 | 2022-04-12 | Jenkins Git Parameter Plugin 0.9.15 and earlier does not escape the name and description of Git parameters on views displaying parameters, resulting in a store… |
CVE-2020-2238 | Medium | 5.4 | 2020-09-01 | Jenkins Git Parameter Plugin 0.9.12 and earlier does not escape the repository field on the 'Build with Parameters' page, resulting in a stored cross-site scri… |
CVE-2020-2113 | Medium | 5.4 | 2020-02-12 | Jenkins Git Parameter Plugin 0.9.11 and earlier does not escape the default value shown on the UI, resulting in a stored cross-site scripting vulnerability exp… |
CVE-2020-2112 | Medium | 5.4 | 2020-02-12 | Jenkins Git Parameter Plugin 0.9.11 and earlier does not escape the parameter name shown on the UI, resulting in a stored cross-site scripting vulnerability ex… |
CVE-2026-57286 | Medium | 4.3 | 2026-06-24 | A missing permission check in Jenkins Git Parameter Plugin 462.vdcf3df2ed2ca_ and earlier allows attackers with Item/Read permission to obtain information abou… |