1998 matches found
CVE-2022-41232
A cross-site request forgery CSRF vulnerability in Jenkins Build-Publisher Plugin 1.22 and earlier allows attackers to replace any config.xml file on the Jenkins controller file system with an empty file by providing a crafted file name to an API endpoint...
CVE-2022-41232
A cross-site request forgery CSRF vulnerability in Jenkins Build-Publisher Plugin 1.22 and earlier allows attackers to replace any config.xml file on the Jenkins controller file system with an empty file by providing a crafted file name to an API endpoint...
Cross site request forgery (csrf)
A cross-site request forgery CSRF vulnerability in Jenkins Build-Publisher Plugin 1.22 and earlier allows attackers to replace any config.xml file on the Jenkins controller file system with an empty file by providing a crafted file name to an API endpoint...
Design/Logic Flaw
Jenkins Build-Publisher Plugin 1.22 and earlier allows attackers with Item/Configure permission to create or replace any config.xml file on the Jenkins controller file system by providing a crafted file name to an API endpoint...
CVE-2022-41232
CVE-2022-41232 is a cross-site request forgery (CSRF) vulnerability in Jenkins Build-Publisher Plugin (versions 1.22 and earlier). The issue allows an attacker to replace any config.xml file on the Jenkins controller filesystem with an empty file by supplying a crafted file name to an API endpoin...
CVE-2022-41231
Jenkins Build-Publisher Plugin 1.22 and earlier allows attackers with Item/Configure permission to create or replace any config.xml file on the Jenkins controller file system by providing a crafted file name to an API endpoint...
CVE-2022-41231
CVE-2022-41231 : Jenkins Build-Publisher Plugin
PT-2022-25748 · Jenkins · Jenkins Build-Publisher Plugin +1
Name of the Vulnerable Software and Affected Versions: Jenkins Build-Publisher Plugin versions 1.22 and earlier Description: A cross-site request forgery CSRF vulnerability allows attackers to replace any config.xml file on the Jenkins controller file system with an empty file by providing a...
Normal user can set himself or any other user to admin role
Description Improper access to an API endpointAddUserToRole can allow a regular user to escalate his privileges to be an admin Infected code AuthorizeRoles = Roles.User HttpPost public async Task AddUserToRoleFromQuery string username, string role var results = await...
PT-2022-25182 · Tenda · Tenda Ac21
Name of the Vulnerable Software and Affected Versions: Tenda AC21 version 16.03.08.15 Description: The issue is related to a Buffer Overflow that can occur via the /bin/httpd, specifically in the function formSetQosBand. This can be exploited through the API endpoint "/bin/httpd". The...
PT-2022-23894 · Craft Cms · Craft Cms
Name of the Vulnerable Software and Affected Versions: Craft CMS version 4.2.0.1 Description: The issue is related to Stored Cross Site Scripting XSS in the "/admin/myaccount" API endpoint. This allows for malicious scripts to be stored and executed on the platform. Recommendations: For Craft CMS...
PT-2022-24604 · Unknown · School Activity Updates With Sms Notification
Name of the Vulnerable Software and Affected Versions: School Activity Updates with SMS Notification version 1.0 Description: The issue concerns SQL Injection, which can be exploited via the "/activity/admin/modules/event/index.php?view=edit&id=" API endpoint. The id variable is vulnerable to thi...
PT-2022-24445 · Archery · Archery
Name of the Vulnerable Software and Affected Versions: Archery versions 1.7.5 through 1.8.5 Description: The issue is related to a SQL injection vulnerability. This vulnerability can be exploited via the where parameter at the "/archive/apply" API endpoint. Recommendations: For versions 1.7.5...
PT-2022-24354 · Unknown · Online Leave Management System
Name of the Vulnerable Software and Affected Versions: Online Leave Management System version 1.0 Description: The issue is related to a SQL injection vulnerability. This vulnerability can be exploited via the id parameter at the "/maintenance/manage leave type.php" API endpoint. Recommendations:...
Exposure of "Forgot Password" Token on Threads Controller Leads to Account Takeover
Description Hello there! Hope you are doing great! I kept looking for issues that are similar to CVE-2022-3019, and ended up finding one more, it's in the Thread entity, and I found it by looking at the /api/threads/:appid/all endpoint. It retrieves sensitive information about every user that's i...
Mass Assignment in Self Controller Leads To Vertical Privillege Escalation
Description Hello there, y'all! How are you doing? Hope you are doing great! I was testing Budibase and noticed that the api endpoint /api/global/self, which is used for different purposes updating an user's name or their password, always receives an entire object containing most of the attribute...
PT-2022-24330 · Jfinalcms · Jfinalcms
Name of the Vulnerable Software and Affected Versions: JFinal CMS version 5.1.0 Description: The issue allows for SQL Injection via the "/admin/foldernotice/list" API endpoint. Recommendations: For JFinal CMS version 5.1.0, update to a newer version that contains a fix for this issue...
PT-2022-24340 · Jfinalcms · Jfinalcms
Name of the Vulnerable Software and Affected Versions: JFinal CMS version 5.1.0 Description: The issue is related to SQL Injection, which can be exploited via the /system/menu/list API endpoint. This allows for potential unauthorized access to sensitive data. Recommendations: For JFinal CMS versi...
PT-2022-24332 · Jfinalcms · Jfinalcms
Name of the Vulnerable Software and Affected Versions: JFinal CMS version 5.1.0 Description: The issue allows for SQL Injection via the "/admin/friendlylink/list" API endpoint. Recommendations: For JFinal CMS version 5.1.0, update to a newer version that contains a fix for this issue. At the...
PT-2022-24328 · Jfinalcms · Jfinalcms
Name of the Vulnerable Software and Affected Versions: JFinal CMS version 5.1.0 Description: The issue allows for SQL Injection via the "/admin/comment/list" API endpoint. Recommendations: For JFinal CMS version 5.1.0, update to a newer version that contains a fix for this issue...