Known vulnerabilities in Jenkins FitNesse

Vendor: Jenkins

Website: https://jenkins.io/

Total Security Bulletins: 3

Security bulletins (3)

Secuity bulletin	Severity	Status	Published
SB2026063005: Unprotected storage of credentials in Jenkins FitNesse plugin	Medium	Not patched	30.06.2026
SB2020040817: Stored cross-site scripting in Jenkins FitNesse plugin	Low	Patched	08.04.2020
SB2020021311: XML External Entity injection in FitNesse plugin for Jenkins	Medium	Patched	13.02.2020