Lucene search
K

118 matches found

Prion
Prion
added 2017/02/09 3:59 p.m.19 views

Cross site scripting

Cross-site scripting XSS vulnerability in the Build Failure Analyzer plugin before 1.16.0 in Jenkins allows remote attackers to inject arbitrary web script or HTML via an unspecified parameter...

4.3CVSS6.2AI score0.01229EPSS
Exploits0References2Affected Software1
Cvelist
Cvelist
added 2017/02/09 3:0 p.m.26 views

CVE-2016-4988

Cross-site scripting XSS vulnerability in the Build Failure Analyzer plugin before 1.16.0 in Jenkins allows remote attackers to inject arbitrary web script or HTML via an unspecified parameter...

6.1AI score0.01229EPSS
Exploits0References1
CVE
CVE
added 2017/02/09 3:0 p.m.64 views

CVE-2016-4988

CVE-2016-4988 describes a Cross-site scripting (XSS) vulnerability in the Jenkins Build Failure Analyzer plugin prior to version 1.16.0. The issue arises in the plugin’s handling of an unspecified parameter, allowing remote attackers to inject arbitrary web script or HTML. The impact is limited t...

6.1CVSS6.1AI score0.01229EPSS
Exploits0References2Affected Software1
Tenable Nessus
Tenable Nessus
added 2016/09/28 12:0 a.m.22 views

Debian DLA-636-2 : firefox-esr regression update

The update of firefox-esr to 45.4.0esr-1deb7u1 caused build failure on armel and armhf architectures. For Debian 7 'Wheezy', these problems have been fixed in version 45.4.0esr-1deb7u2. We recommend that you upgrade your firefox-esr packages. NOTE: Tenable Network Security has extracted the...

5.5AI score
Exploits0References2
CNVD
CNVD
added 2016/06/21 12:0 a.m.6 views

CloudBees Jenkins CI Build Failure Analyzer plugin cross-site scripting vulnerability

CloudBees Jenkins CI formerly known as Hudson Labs is a set of Java-based development of continuous integration tools , which is mainly used to monitor the continuous software version release/testing projects and some timed tasks.Jenkins CI Build Failure Analyzer is one of the a plugin for...

6.1CVSS6AI score0.01229EPSS
Exploits0References1
Oracle linux
Oracle linux
added 2015/10/27 12:0 a.m.37 views

qemu-kvm security update

1.5.3-86.el71.8 - kvm-qtest-ide-test-disable-flush-test.patch bz1273098 - Resolves: bz1273098 qemu-kvm build failure race condition in tests/ide-test 1.5.3-86.el71.7 - kvm-CVE-2015-1779-incrementally-decode-websocket-frames.patch bz1205050 -...

7.8CVSS1.9AI score0.07393EPSS
Exploits0
Oracle linux
Oracle linux
added 2015/10/15 12:0 a.m.35 views

lxc security update

1.0.7-2.0.12 - Orabug 22011867 ol6 ct shutdown script remounts /dev/pts/ devices as ro on host system. 1.0.7-2.0.11 - Orabug 21842483 failed to create directory '/RUN/LXC/LOCK//CONTAINER/OL7.1/SNAPS' - CVE-2015-1335: Protect container mounts against symlinks. - Fixed build failure on OL6...

7.2CVSS1.3AI score0.00459EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2014/06/13 12:0 a.m.44 views

openSUSE Security Update : apache2-mod_security2 (openSUSE-SU-2013:1331-1)

complete overhaul of this package, with update to 2.7.5. - ruleset update to 2.2.8-0-g0f07cbb. - new configuration framework private to modsecurity2: /etc/apache2/conf.d/modsecurity2.conf loads /usr/share/apache2-modsecurity2/rules/modsecuritycrs1 0setup.conf, then...

7.5CVSS6.2AI score0.13719EPSS
Exploits8References10
Oracle linux
Oracle linux
added 2013/12/11 12:0 a.m.46 views

firefox security update

24.2.0-1.0.1.el64 - Add firefox-oracle-default-prefs.js and remove the corresponding Red Hat one - Build with nspr-devel = 4.10.0 to fix build failure 24.2.0-1 - Update to 24.2.0 ESR 24.1.0-4 - Fixed mozbz938730 - avoid mix of memory allocators crashes when using system sqlite 24.1.0-3 - Fixed...

10CVSS2AI score0.11076EPSS
Exploits8
NVD
NVD
added 2013/11/25 7:55 p.m.13 views

CVE-2013-6374

Cross-site scripting XSS vulnerability in the Build Failure Analyzer plugin before 1.5.1 for Jenkins allows remote authenticated users to inject arbitrary web script or HTML via unspecified vectors...

3.5CVSS5.2AI score0.00967EPSS
Exploits0References4
Prion
Prion
added 2013/11/25 7:55 p.m.14 views

Cross site scripting

Cross-site scripting XSS vulnerability in the Build Failure Analyzer plugin before 1.5.1 for Jenkins allows remote authenticated users to inject arbitrary web script or HTML via unspecified vectors...

3.5CVSS5.6AI score0.00967EPSS
Exploits0References4Affected Software1
CVE
CVE
added 2013/11/25 7:0 p.m.41 views

CVE-2013-6374

The Build Failure Analyzer plugin for Jenkins (before 1.5.1) is affected by a Cross-Site Scripting (XSS) vulnerability that lets remote authenticated users inject arbitrary script/HTML via unspecified vectors. Affected component: Jenkins plugin; root cause: XSS in the plugin. Impact per sources i...

3.5CVSS5.3AI score0.00967EPSS
Exploits0References4Affected Software1
Tenable Nessus
Tenable Nessus
added 2013/07/18 12:0 a.m.28 views

SuSE 11.3 Security Update : icedtea-web (SAT Patch Number 7981)

This update to IcedTea-Web 1.4 provides the following fixes and enhancements : - Security updates - RH916774: Class-loader incorrectly shared for applets with same relative-path. CVE-2013-1926 - RH884705: fixed gifar vulnerabilit. CVE-2013-1927 - RH840592: Potential read from an uninitialized...

7.5CVSS5.7AI score0.06172EPSS
Exploits1References11
Oracle linux
Oracle linux
added 2012/03/01 12:0 a.m.54 views

util-linux security, bug fix, and enhancement update

2.13-0.59.0.1.el5 - Merge UEK modification fix 10104470 - Import hwclock from util-linux-ng Kris Van Hees 2.13-0.59 - fix 768382 - CVE-2011-1675 CVE-2011-1677 util-linux various flaws 2.13-0.58 - fix 677452 - util-linux fails to build with gettext-0.17 2.13-0.57 - fix 646300 - login doesn't updat...

4.6CVSS8.7AI score0.00449EPSS
Exploits0
OpenVAS
OpenVAS
added 2009/12/14 12:0 a.m.27 views

Fedora Core 10 FEDORA-2009-13066 (ruby)

The remote host is missing an update to ruby announced via advisory FEDORA-2009-13066. OpenVAS Vulnerability Test $Id: fcore200913066.nasl 6624 2017-07-10 06:11:55Z cfischer $ Description: Auto-generated from advisory FEDORA-2009-13066 ruby Authors: Thomas Reinke Copyright: Copyright c 2009 E-Sof...

5CVSS0.4AI score0.15197EPSS
Exploits3
Tenable Nessus
Tenable Nessus
added 2009/04/23 12:0 a.m.25 views

MDVA-2009:018-1 : clamav

This update fixes several issues with clamav: - update unexpectely changes location of clamd socket 46459 - clamav-milter was not built 46555 - Clamav-milter wanted to remove postfix 46556 - Scanning mail with clamav leaves a big temporary folder 46642 - Build fails if invoked with --with milter,...

6.9AI score
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2009/04/23 12:0 a.m.22 views

MDVA-2009:018 : clamav

This update fixes several issues with clamav: - update unexpectely changes location of clamd socket 46459 - clamav-milter was not built 46555 - Clamav-milter wanted to remove postfix 46556 - Scanning mail with clamav leaves a big temporary folder 46642 - Build fails if invoked with --with milter,...

7AI score
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2008/06/24 12:0 a.m.66 views

openSUSE 10 Security Update : kernel (kernel-5339)

This kernel update fixes the following security problems: CVE-2008-2136: A problem in SIT IPv6 tunnel handling could be used by remote attackers to immediately crash the machine. CVE-2008-1615: On x8664 a denial of service attack could be used by local attackers to immediately panic / crash the...

7.8CVSS7.5AI score0.04934EPSS
Exploits9References9
Rows per page
Query Builder