Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

8 matches found

vulnersOsv
vulnersOsvadded 2022/05/24 5:3 p.m.2 views

org.jenkins-ci.plugins:gerrit-verify-status-reporter (>=0.0.2 <=0.0.3), org.jenkins-ci.plugins:msginject (>=0.1.0 <=0.1.1) +1 more potentially affected by CVE-2019-16551 via com.sonyericsson.hudson.plugins.gerrit:gerrit-trigger (>=2.14.0 <=2.22.0)

com.sonyericsson.hudson.plugins.gerrit:gerrit-trigger MAVEN version =2.14.0, =0.0.2, =0.1.0, =1.0, =2.4.6 Source cves: CVE-2019-16551 Source advisory: OSV:GHSA-VMVP-2HHX-RGM8...

8.8CVSS7.2AI score0.0011EPSS
Exploits0
NVD
NVDadded 2019/12/17 3:15 p.m.18 views

CVE-2019-16551

A cross-site request forgery vulnerability in Jenkins Gerrit Trigger Plugin 2.30.1 and earlier allows attackers to connect to an attacker-specified HTTP URL or SSH server using attacker-specified credentials...

8.8CVSS8.6AI score0.0011EPSS
Exploits0References2
OSV
OSVadded 2019/12/17 3:15 p.m.15 views

CVE-2019-16551

A cross-site request forgery vulnerability in Jenkins Gerrit Trigger Plugin 2.30.1 and earlier allows attackers to connect to an attacker-specified HTTP URL or SSH server using attacker-specified credentials...

8.8CVSS6.7AI score
Exploits0References2
CVE
CVEadded 2019/12/17 2:40 p.m.64 views

CVE-2019-16551

Jenkins Gerrit Trigger Plugin versions 2.30.1 and earlier are affected by a cross-site request forgery vulnerability that allows an attacker to cause the plugin to connect to an attacker-specified HTTP URL or SSH server using attacker-specified credentials. Root cause: CSRF in the plugin’s handli...

8.8CVSS8.6AI score0.0011EPSS
Exploits0References2Affected Software1
CVE
CVEadded 2018/09/05 10:0 p.m.34 views

CVE-2018-16551

CVE-2018-16551 affects LavaLite 5.5 and describes a cross-site scripting (XSS) vulnerability in the /edit URI, demonstrated by examples such as client/job/job/Zy8PWBekrJ/edit. The connected documents confirm the vulnerable component and the entry point, but do not provide concrete details on the ...

5.4CVSS5.1AI score0.00206EPSS
Exploits1References1Affected Software1
NVD
NVDadded 2018/01/16 7:29 p.m.12 views

CVE-2017-16551

K7 Antivirus Premium before 15.1.0.53 allows local users to gain privileges by sending a specific IOCTL after setting the memory in a particular way...

7CVSS6.9AI score0.00051EPSS
Exploits0References1
OSV
OSVadded 2018/01/16 7:29 p.m.1 views

CVE-2017-16551

K7 Antivirus Premium before 15.1.0.53 allows local users to gain privileges by sending a specific IOCTL after setting the memory in a particular way...

7CVSS5.8AI score0.00051EPSS
Exploits0References1
CVE
CVEadded 2018/01/16 7:0 p.m.53 views

CVE-2017-16551

CVE-2017-16551 affects K7 Antivirus Premium prior to version 15.1.0.53. The issue enables local privilege escalation by a user sending a specific IOCTL after manipulating memory in a particular way. The vulnerability is described as a local privilege escalation with memory/state prerequisites, an...

7CVSS7.1AI score0.00051EPSS
Exploits0References1Affected Software5
Rows per page
Query Builder