Known Vulnerabilities for Assembla by Jenkins
Listed below are 5 of the newest known vulnerabilities associated with "Assembla" by "Jenkins".
These CVEs are retrieved based on exact matches on listed software, hardware, and vendor information (CPE data) as well as a keyword search to ensure the newest vulnerabilities with no officially listed software information are still displayed.
Data on known vulnerable versions is also displayed based on information from known CPEs
Known Vulnerabilities
| CVE | Shortened Description | Severity | Publish Date | Last Modified |
|---|---|---|---|---|
| CVE-2026-57305 json | A cross-site request forgery (CSRF) vulnerability in Jenkins Assembla Plugin 1.4 and earlier allows attackers to connect to a... | Not Provided | 2026-06-24 | 2026-06-24 |
| CVE-2026-57304 json | A missing permission check in Jenkins Assembla Plugin 1.4 and earlier allows attackers with Overall/Read permission to connec... | Not Provided | 2026-06-24 | 2026-06-24 |
| CVE-2026-57303 json | Jenkins Assembla Plugin 1.4 and earlier does not configure its XML parser to prevent XML external entity (XXE) attacks, allow... | Not Provided | 2026-06-24 | 2026-06-24 |
| CVE-2023-37961 json | A cross-site request forgery (CSRF) vulnerability in Jenkins Assembla Auth Plugin 1.14 and earlier allows attackers to trick ... | 8.8 - HIGH | 2023-07-12 | 2023-07-20 |
| CVE-2019-10420 json | Jenkins Assembla Plugin stores credentials unencrypted in its global configuration file on the Jenkins master where they can ... | 5.5 - MEDIUM | 2019-09-25 | 2023-10-25 |