CVE-2025-53652 – Jenkins Git Parameter Plugin Unauthorized Parameter Injection Vulnerability

July 10, 2025

CVE ID : CVE-2025-53652

Published : July 9, 2025, 4:15 p.m. | 11 hours, 45 minutes ago

Description : Jenkins Git Parameter Plugin 439.vb_0e46ca_14534 and earlier does not validate that the Git parameter value submitted to the build matches one of the offered choices, allowing attackers with Item/Build permission to inject arbitrary values into Git parameters.

Severity: 8.2 | HIGH

Visit the link for more details, such as CVSS details, affected products, timeline, and more…

Source: Read More

Previous ArticleCVE-2025-52357 – FiberHome FD602GW-DX-R410 Router Ping Diagnostic XSS

Next Article CVE-2025-44177 – White Star Software Protop Directory Traversal Vulnerability

CodeSOD: A Unique Way to Primary Key

BrowserStack launches Figma plugin for detecting accessibility issues in design phase

Parasoft brings agentic AI to service virtualization in latest release

Node.js vs. Python for Backend: 7 Reasons C-Level Leaders Choose Node.js Talent

The best CRM software with email marketing in 2025: Expert tested and reviewed

This multi-port car charger can power 4 gadgets at once – and it’s surprisingly cheap

I’m a wearables editor and here are the 7 Pixel Watch 4 rumors I’m most curious about

8 ways I quickly leveled up my Linux skills – and you can too

The Intersection of Agile and Accessibility – A Series on Designing for Everyone

The Intersection of Agile and Accessibility – A Series on Designing for Everyone

Zero Trust & Cybersecurity Mesh: Your Org’s Survival Guide

Execute Ping Commands and Get Back Structured Data in PHP

A Tomb Raider composer has been jailed — His legacy overshadowed by $75k+ in loan fraud

A Tomb Raider composer has been jailed — His legacy overshadowed by $75k+ in loan fraud

“I don’t think I changed his mind” — NVIDIA CEO comments on H20 AI GPU sales resuming in China following a meeting with President Trump

Galaxy Z Fold 7 review: Six years later — Samsung finally cracks the foldable code

CVE-2025-53652 – Jenkins Git Parameter Plugin Unauthorized Parameter Injection Vulnerability

CVE-2025-44658 – Netgear RAX30 PHP-FPM Misconfigured Extension Bypass Vulnerability

CVE-2025-7393 – Drupal Mail Login Authentication Bypass

CVE-2025-30483 – Dell ECS Insertion of Sensitive Information into Log File Vulnerability

CVE-2025-4536 – Gosuncn Technology Group Audio-Visual Integrated Management Platform Remote Information Disclosure

CVE-2025-6719 – WordPress Terms Descriptions Stored Cross-Site Scripting Vulnerability

CVE-2025-25037 – Aquatronica Controller System Information Disclosure Vulnerability

CVE-2025-52169 – Agorum Core Reflected Cross-Site Scripting (XSS) Vulnerability

CVE-2025-4502 – Campcodes Sales and Inventory System SQL Injection Vulnerability

CNCF Triggers a Platform Parity Breakthrough for Arm64 and x86

CVE-2025-4297 – PHPGurukul Men Salon Management System SQL Injection Vulnerability

CVE-2025-53652 – Jenkins Git Parameter Plugin Unauthorized Parameter Injection Vulnerability

Related Posts