Jenkins Project Jenkins Simple Queue Plugin vulnerabilities
2 known vulnerabilities affecting jenkins_project/jenkins_simple_queue_plugin.
Total CVEs
2
CISA KEV
0
Public exploits
0
Exploited in wild
0
Severity breakdown
HIGH1MEDIUM1
Vulnerabilities
Page 1 of 1
CVE-2024-54003P3HIGHCVSS 8.0≤ 1.4.42024-11-27
CVE-2024-54003 [HIGH] CWE-79 CVE-2024-54003: Jenkins Simple Queue Plugin 1.4.4 and earlier does not escape the view name, resulting in a stored c
Jenkins Simple Queue Plugin 1.4.4 and earlier does not escape the view name, resulting in a stored cross-site scripting (XSS) vulnerability exploitable by attackers with View/Create permission.
nvd
CVE-2025-31723P4MEDIUMCVSS 4.3≤ 1.4.62025-04-02
CVE-2025-31723 [MEDIUM] CWE-352 CVE-2025-31723: A cross-site request forgery (CSRF) vulnerability in Jenkins Simple Queue Plugin 1.4.6 and earlier a
A cross-site request forgery (CSRF) vulnerability in Jenkins Simple Queue Plugin 1.4.6 and earlier allows attackers to change and reset the build queue order.
nvd