VYPR

Maven package

io.jenkins.plugins/simple-queue

pkg:maven/io.jenkins.plugins/simple-queue

Vulnerabilities (2)

  • CVE-2025-31723Apr 2, 2025
    affected < 1.4.7fixed 1.4.7

    A cross-site request forgery (CSRF) vulnerability in Jenkins Simple Queue Plugin 1.4.6 and earlier allows attackers to change and reset the build queue order.

  • CVE-2024-54003Nov 27, 2024
    affected < 1.4.5fixed 1.4.5

    Jenkins Simple Queue Plugin 1.4.4 and earlier does not escape the view name, resulting in a stored cross-site scripting (XSS) vulnerability exploitable by attackers with View/Create permission.