← Back

Simple Queue

simple_queue

Vendor: Jenkins • 2 CVEs

CVEs (2)

CVE
VENDORS
PRODUCTS
UPDATED
PUBLISHED
CVSS
CVE-2025-31723
1Jenkins
1Simple Queue
Apr 17, 2025
Apr 2, 2025
N/A· v4
4.3 MEDIUM· v3
N/A· v2
A cross-site request forgery (CSRF) vulnerability in Jenkins Simple Queue Plugin 1.4.6 and earlier allows attackers to change and reset the build queue order.
CVE-2024-54003
1Jenkins
1Simple Queue
Oct 3, 2025
Nov 27, 2024
N/A· v4
8.0 HIGH· v3
N/A· v2
Jenkins Simple Queue Plugin 1.4.4 and earlier does not escape the view name, resulting in a stored cross-site scripting (XSS) vulnerability exploitable by attackers with View/Create permission.