漏洞描述
【漏洞对象】jenkins 【漏洞描述】jenkins未授权访问可导致访问后台可getshell,泄漏了用户信息并可在服务器上执行任意命令,写入后门,从而入侵服务器,获取服务器的管理员权限,危害巨大。
jenkins后台-未授权访问可获得Shell
PoC代码
暂无相关漏洞推荐
- (CVE-2025-59474)Jenkins侧边栏权限绕过漏洞
- jenkins-unauthorized-rce: Jenkins unauthorized rce
- POC CVE-2017-1000353: Jenkins CLI - Java Deserialization
- POC CVE-2022-42889: Text4Shell - Remote Code Execution
- POC CVE-2009-0545: ZeroShell <= 1.0beta11 Remote Code Execution
- POC CVE-2014-2321: ZTE Cable Modem Web Shell
- POC CVE-2014-6271: ShellShock - Remote Code Execution
- POC CVE-2016-9299: Jenkins CLI - HTTP Java Deserialization
- POC CVE-2018-1000600: Jenkins GitHub Plugin <=1.29.1 - Server-Side Request Forgery
- POC CVE-2018-1000861: Jenkins - Remote Command Injection
- POC CVE-2019-1003000: Jenkins Script Security Plugin <=1.49 - Sandbox Bypass
- POC CVE-2019-10405: Jenkins <=2.196 - Cookie Exposure
- POC CVE-2019-10475: Jenkins build-metrics 1.3 - Cross-Site Scripting