102 matches found
Jenkins autonomiq Plugin Access Control Error Vulnerability
Jenkins is a Jenkins open source application. An open source automation server Jenkins provides hundreds of plugins to support building, deploying and automating any project. an access control error vulnerability in Jenkins autonomiq Plugin 1.15 and earlier versions, which stems from not performi...
Jenkins Snow Commander Plugin Access Control Error Vulnerability
Jenkins is a Jenkins open source application. An open source automation server Jenkins provides hundreds of plugins to support building, deploying, and automating any project.Jenkins Snow Commander Plugin 2.0 and earlier versions are vulnerable to an access control error that stems from not...
Jenkins Pipeline Shared Groovy Libraries Plugin Sandbox Bypass Vulnerability
Jenkins is a Jenkins open source application. An open source automation server Jenkins provides hundreds of plugins to support building, deploying, and automating any project.Jenkins Pipeline Shared Groovy Libraries Plugin 552.vd9cc05b8a2e1 and earlier versions have a sandbox bypass vulnerability...
Jenkins SCP publisher Plugin cross-site request forgery vulnerability
Jenkins is a Jenkins open source application. An open source automation server, Jenkins provides hundreds of plugins to support building, deploying and automating any project.Jenkins SCP publisher Plugin 1.8 and earlier versions are vulnerable to cross-site request forgery, which stems from a WEB...
Jenkins HashiCorp Vault Plugin Arbitrary File Read Vulnerability
Jenkins is a Jenkins open source application. An open source automation server, Jenkins provides hundreds of plugins to support building, deploying, and automating any project. Jenkins HashiCorp Vault Plugin 336.v182c0fbaaeb7 and earlier versions contain an arbitrary file read vulnerability that...
Jenkins Permissions and Access Control Issues Vulnerability
Jenkins is a Jenkins open source application. An open source automation server, Jenkins provides hundreds of plugins to support building, deploying, and automating any project.Jenkins SSH Agent Plugin 1.23 previously had a security vulnerability that stemmed from a lack of privilege checking, whi...
Jenkins batch task Plugin cross-site request forgery vulnerability
Jenkins is a Jenkins open source application. An open source automation server Jenkins provides hundreds of plugins to support building, deploying and automating any project.Jenkins batch task Plugin 1.19 and earlier versions are vulnerable to cross-site request forgery. An attacker with...
Jenkins Cross-Site Request Forgery Vulnerability (CNVD-2022-08036)
Jenkins is a Jenkins open source application . An open source automation server Jenkins provides hundreds of plug-ins to support building, deploying and automating any project . Jenkins has a cross-site request forgery vulnerability that stems from the WEB application not adequately verifying tha...
Jenkins Input Validation Error Vulnerability (CNVD-2022-05101)
Jenkins is a Jenkins open source application. An open source automation server Jenkins provides hundreds of plugins to support building, deploying, and automating any project.The Jenkins Credentials Binding Plugin is vulnerable to an input validation error that stems from the plugin's failure to...
Jenkins Mailer Plugin Cross-Site Request Forgery Vulnerability
Jenkins is a Jenkins open source application . An open source automation server Jenkins provides hundreds of plug-ins to support building, deploying and automating any project . A cross-site request forgery vulnerability exists in Jenkins Mailer that stems from the software's lack of validation f...
Jenkins Bitbucket Branch Source Plugin Cross-Site Request Forgery Vulnerability
Jenkins is a Jenkins open source application . An open source automation server Jenkins provides hundreds of plug-ins to support building, deploying and automating any project . The Jenkins Bitbucket Branch Source Plugin suffers from a cross-site request forgery vulnerability that stems from a WE...
Security Bulletin: Rational Test Automation Server is vulnerable to arbitrary code execution due to Apache Log4j (CVE-2021-44228)
Summary Apache Log4j vulnerability associated with the Rational Performance Tester Apache JMeter™ Test Extension impacts Rational Test Automation Server. Vulnerability Details CVEID: CVE-2021-44228 DESCRIPTION: Apache Log4j could allow a remote attacker to execute arbitrary code on the system,...
Jenkins code issue vulnerability (CNVD-2021-93372)
Jenkins is a Jenkins open source application. An open source automation server Jenkins provides hundreds of plugins to support building, deploying, and automating any project. a code issue vulnerability exists in Jenkins Plugin, which stems from the pom2config plugin version 1.2 and earlier not...
Jenkins Access Control Error Vulnerability (CNVD-2021-88718)
Jenkins is a Jenkins open source application . An open source automation server Jenkins provides hundreds of plug-ins to support building, deploying and automating any project . Jenkins has an access control error vulnerability that stems from FilePathunzip and FilePathuntar not being subject to...
Jenkins Access Control Error Vulnerability (CNVD-2021-46869)
Jenkins is a Jenkins open source application . An open source automation server Jenkins provides hundreds of plug-ins to support building, deploying and automating any project . Jenkins suffers from an Access Control Error vulnerability that stems from Jenkins allowing a user to cancel a project...
Jenkins 输入验证错误漏洞
Jenkins is a Jenkins open source application . An open source automation server Jenkins provides hundreds of plug-ins to support building, deploying and automating any project . An input validation error vulnerability exists in Jenkins CAS Plugin 1.6.0 and earlier versions, which stems from Jenki...
Jenkins cross-site scripting vulnerability (CNVD-2021-49067)
Jenkins is a Jenkins open source application . An open source automation server Jenkins provides hundreds of plug-ins to support building, deploying and automating any project . A cross-site scripting vulnerability exists in Jenkins Kiuwan Plugin, which stems from a cross-site scripting XSS...
CODESYS Group CODESYS Automation Server Cross-Site Request Forgery Vulnerability
CODESYS Group CODESYS Automation Server is an application from the German company CODESYS Group. It is used to manage control tasks. A cross-site request forgery vulnerability exists in CODESYS Group CODESYS Automation Server versions prior to 1.16.0. No detailed vulnerability details are current...
CVE-2021-29238
CODESYS Automation Server before 1.16.0 allows cross-site request forgery CSRF...
CVE-2021-29238
CODESYS Automation Server before 1.16.0 allows cross-site request forgery CSRF...