CVE-2018-1000113

A cross-site scripting vulnerability exists in Jenkins TestLink Plugin 2.12 and earlier in TestLinkBuildAction/summary.jelly and others that allow an attacker who can control e.g. TestLink report names to have Jenkins serve arbitrary HTML and JavaScript...

CVE-2018-1000113

The CVE-2018-1000113 entry describes a cross-site scripting vulnerability in Jenkins TestLink Plugin (versions up to 2.12) affecting TestLinkBuildAction/summary.jelly and related components. The root cause is improper handling of user-controlled report names, enabling an attacker to cause Jenkins...

CVE-2017-1000113

The CVE-2017-1000113 issue affects the CloudBees Jenkins Deploy to Container Plugin (Jenkins) where passwords were stored unencrypted in its configuration. Root cause: credentials were kept in plaintext, enabling anyone with Jenkins master local filesystem access or with Extended Read to affected...

CVE-2016-1000113

XSS and SQLi in huge IT gallery v1.1.5 for Joomla...

CVE-2016-1000113

XSS and SQLi in huge IT gallery v1.1.5 for Joomla...

CVE-2016-1000113

XSS and SQLi in huge IT gallery v1.1.5 for Joomla...

CVE-2016-1000113

CVE-2016-1000113 affects Joomla! Huge-IT Image Gallery extension (v1.1.5). Reported XSS and SQL injection flaws stem from insufficient input validation in the gallery plugin (notably id parameter handling in admin/gallery.php). Impact per the records includes potential disclosure or modification ...

Joomla Huge IT Gallery 1.1.5 Cross Site Scripting / SQL Injection

Title: XSS and SQLi in huge IT gallery v1.1.5 for Joomla Author: Larry W. Cashdollar, @larry0 Elitza Neytcheva, @E1337za Date: 2016-07-14 Download Site: http://extensions.joomla.org/extensions/extension/photos-a-images/galleries/gallery-pro Vendor: huge-it.com Vendor Notified: 2016-07-15, fixed...