5 matches found
CVE-2018-1000146
An arbitrary code execution vulnerability exists in Liquibase Runner Plugin version 1.3.0 and older that allows an attacker with permission to configure jobs to load and execute arbitrary code on the Jenkins master JVM...
CVE-2018-1000146
CVE-2018-1000146 : The vulnerability affects Liquibase Runner Plugin (Jenkins) versions 1.3.0 and older. Affected component/timeframe: plugin enables an attacker with permission to configure jobs to load and execute arbitrary code on the Jenkins master JVM. Documented impact is arbitrary code exe...
CVE-2017-1000146
CVE-2017-1000146 affects Mahara 1.9 before 1.9.7, 1.10 before 1.10.5, and 15.04 before 15.04.2. The underlying issue is an unescaped portfolio page title in the AJAX update of the Add/remove watchlist link on artefact detail pages, allowing arbitrary Javascript execution in the browser of a logge...
CVE-2016-1000146
Reflected XSS in wordpress plugin pondol-formmail v1.1...
CVE-2016-1000146
CVE-2016-1000146 corresponds to a reflected XSS in WordPress Pondol Form to Mail plugin (= 1.2) or applying vendor patches. In summary, affected product: Pondol Form to Mail WordPress plugin, versions = 1.2 or apply patch.