CVE-2022-29050

A cross-site request forgery CSRF vulnerability in Jenkins Publish Over FTP Plugin 1.16 and earlier allows attackers to connect to an FTP server using attacker-specified credentials...

CVE-2024-29050

creationtimestamp| type| source ---|---|--- 2024-04-11 09:25:30+00:00| seen| https://t.me/arpsyndicate/4491 2024-08-23 13:29:53+00:00| published-proof-of-concept| https://t.me/Rootsec2/4212 2024-08-23 22:17:53+00:00| published-proof-of-concept| https://t.me/CyberSecurityTechnologies/11026...

CVE-2024-29050

Windows Cryptographic Services Remote Code Execution Vulnerability...

CVE-2024-29050 Windows Cryptographic Services Remote Code Execution Vulnerability

...

CVE-2021-29050

Cross-Site Request Forgery CSRF vulnerability in the terms of use page in Liferay Portal before 7.3.6, and Liferay DXP 7.3 before service pack 1, 7.2 before fix pack 11 allows remote attackers to accept the site's terms of use via social engineering and enticing the user to visit a malicious page...

CVE-2021-29050

CVE-2021-29050 describes a Cross-Site Request Forgery (CSRF) in the terms of use page of Liferay Portal prior to 7.3.6 and Liferay DXP 7.3 before SP1, and 7.2 before FP-11.** The underlying issue** is insufficient validation on the terms-of-use acceptance flow, enabling remote attackers to trick ...

CVE-2023-29050

creationtimestamp| type| source ---|---|--- 2024-01-08 10:26:26+00:00| seen| https://t.me/ctinow/164260 2024-01-25 10:46:09+00:00| seen| https://t.me/ctinow/173370...

CVE-2023-29050

The optional "LDAP contacts provider" could be abused by privileged users to inject LDAP filter strings that allow to access content outside of the intended hierarchy. Unauthorized users could break confidentiality of information in the directory and potentially cause high load on the directory...

CVE-2023-29050

Technical details (affected product/versions/root cause/impact/remediation) are not publicly provided in the supplied documents. Monitor for updates from vendors and advisories.

SUSE CVE-2020-29050

SphinxSearch in Sphinx Technologies Sphinx through 3.1.1 allows directory traversal in conjunction with CVE-2019-14511 because the mysql client can be used for CALL SNIPPETS and loadfile operations on a full pathname e.g., a file in the /etc directory. NOTE: this is unrelated to CMUSphinx...

Jenkins Enterprise and Operations Center 2.303.x < 2.303.30.0.10 / 2.332.2.6 Multiple Vulnerabilities (CloudBees Security Advisory 2022-04-12)

The version of Jenkins Enterprise or Jenkins Operations Center running on the remote web server is 2.303.x prior to 2.303.30.0.10, or 2.x prior to 2.332.2.6. It is, therefore, affected by multiple vulnerabilities, including the following: - Jenkins Pipeline: Shared Groovy Libraries Plugin...

CVE-2022-29050

A cross-site request forgery CSRF vulnerability in Jenkins Publish Over FTP Plugin 1.16 and earlier allows attackers to connect to an FTP server using attacker-specified credentials...

CVE-2022-29050

A cross-site request forgery CSRF vulnerability in Jenkins Publish Over FTP Plugin 1.16 and earlier allows attackers to connect to an FTP server using attacker-specified credentials...

CVE-2022-29050

CVE-2022-29050 is a CSRF vulnerability in Jenkins Publish Over FTP Plugin 1.16 and earlier. The issue, documented across Red Hat, OSV, and security advisories, allows an attacker to cause the plugin to connect to an attacker‑controlled FTP server using credentials supplied by the attacker. Affect...

CVE-2022-29050

A cross-site request forgery CSRF vulnerability in Jenkins Publish Over FTP Plugin 1.16 and earlier allows attackers to connect to an FTP server using attacker-specified credentials...

openSUSE: Security Advisory for sphinx (openSUSE-SU-2022:0054-1)

The remote host is missing an update for the Copyright C 2022 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...

openSUSE 15 Security Update : sphinx (openSUSE-SU-2022:0054-1)

The remote SUSE Linux SUSE15 host has packages installed that are affected by a vulnerability as referenced in the openSUSE-SU-2022:0054-1 advisory. - SphinxSearch in Sphinx Technologies Sphinx through 3.1.1 allows directory traversal in conjunction with CVE-2019-14511 because the mysql client ca...

OPENSUSE-SU-2022:0054-1 Security update for sphinx

This update for sphinx fixes the following issues: - CVE-2020-29050: SphinxSearch in Sphinx Technologies Sphinx allows directory traversal in conjunction with CVE-2019-14511 because the mysql client can be used for CALL SNIPPETS and loadfile operations on a full pathname e.g., a file in the /etc...

Security update for sphinx (moderate)

openSUSE Security Update: Security update for sphinx Announcement ID: openSUSE-SU-2022:0054-1 Rating: moderate References: 1157590 1195227 Cross-References: CVE-2020-29050 CVSS scores: CVE-2020-29050 NVD : 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N Affected Products: openSUSE Leap 15.3 An...

openSUSE: Security Advisory for sphinx (openSUSE-SU-2022:0046-1)

The remote host is missing an update for the Copyright C 2022 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...