CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

8 matches found

EUVD•added 2025/10/03 8:7 p.m.•6 views

EUVD-2022-3658

Malicious code in bioql PyPI...

5.4CVSS5.6AI score0.00735EPSS

Exploits0References3

OSV•added 2022/05/24 4:52 p.m.•22 views

GHSA-CX5R-P4VJ-2MQH Jenkins Build Pipeline Plugin vulnerable to Cross-site Scripting

Build Pipeline Plugin does not properly escape variables in views, resulting in a stored cross-site scripting vulnerability exploitable by users with permission to configure build pipelines. This vulnerability is only exploitable on Jenkins releases older than 2.146 or 2.138.2 due to the security...

5.4CVSS5.2AI score0.00735EPSS

Exploits0References3

Github Security Blog•added 2022/05/24 4:52 p.m.•29 views

Jenkins Build Pipeline Plugin vulnerable to Cross-site Scripting

5.4CVSS1.2AI score0.00735EPSS

Exploits0References4Affected Software1

vulnersOsv•added 2022/05/14 2:43 a.m.•5 views

ColumnPack:ColumnPack-plugin (=1.0.3), CustomHistory:CustomHistory (>=1.1 <=1.3) +2157 more potentially affected by CVE-2010-3700 via org.acegisecurity:acegi-security (>=1.0.0 <=1.0.7)

org.acegisecurity:acegi-security MAVEN version =1.0.0, =1.1, =0.0.1, =1.0, =1.0, =0.0.1, =0.1.1, =0.1.0, =1.0, =1.17.3 and more Source cves: CVE-2010-3700 Source advisory: OSV:GHSA-3295-H9QX-R82X...

5CVSS5.8AI score0.01673EPSS

Exploits1

CNVD•added 2019/08/15 12:0 a.m.•3 views

CloudBees Jenkins Build Pipeline Plugin Cross-Site Scripting Vulnerability

CloudBees Jenkins Hudson Labs is the United States CloudBees company's set of Java-based development of continuous integration tools . A cross-site scripting vulnerability exists in the CloudBees Jenkins Build Pipeline Plugin, which can be exploited by an attacker to execute client-side code...

5.4CVSS6.4AI score0.00735EPSS

Exploits0References1

NVD•added 2019/08/07 3:15 p.m.•12 views

CVE-2019-10373

A stored cross-site scripting vulnerability in Jenkins Build Pipeline Plugin 1.5.8 and earlier allows attackers able to edit the build pipeline description to inject arbitrary HTML and JavaScript in the plugin-provided web pages in Jenkins...

5.4CVSS5.2AI score0.00735EPSS

Exploits0References2

OSV•added 2019/08/07 3:15 p.m.•13 views

CVE-2019-10373

5.4CVSS5.7AI score

Exploits0References2

Positive Technologies•added 2019/08/07 12:0 a.m.•6 views

PT-2019-11769 · Jenkins · Jenkins Pipeline: Build Step Plugin +1

Name of the Vulnerable Software and Affected Versions: Jenkins Build Pipeline Plugin versions 1.5.8 and earlier Description: A stored cross-site scripting issue allows attackers who can edit the build pipeline description to inject arbitrary HTML and JavaScript into the plugin-provided web pages ...

5.4CVSS5.2AI score0.00735EPSS

Exploits0References5

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by