Lucene search
K

24 matches found

CNNVD
CNNVD
added 2022/06/22 12:0 a.m.4 views

Jenkins Plugin Pipeline 路径遍历漏洞

Jenkins and Jenkins Plugin are both Jenkins open source products. jenkins is an application. An open source automation server Jenkins provides hundreds of plugins to support building, deploying, and automating any project.Jenkins Plugin is an application software.Jenkins Pipeline Plugin...

7.5CVSS6.9AI score0.01478EPSS
Exploits0References10
OSV
OSV
added 2022/05/14 1:6 a.m.29 views

GHSA-R8RW-XX57-M64Q Cross-Site Request Forgery in Jenkins Git Plugin

A cross-site request forgery vulnerability exists in Jenkins Git Plugin 3.9.1 and earlier in src/main/java/hudson/plugins/git/GitTagAction.java that allows attackers to create a Git tag in a workspace and attach corresponding metadata to a build record...

4.3CVSS6.7AI score0.01145EPSS
Exploits0References5
RedHat Linux
RedHat Linux
added 2021/12/02 6:37 p.m.2 views

jenkins: Agent-to-controller access control allows reading/writing most content of build directories

An incorrect access restriction vulnerability was found in Jenkins. The directories agents are allowed to access include the directories where there are stored build-related information intended to allow agents to store build-related metadata during build execution. As a consequence, this allows ...

9.1CVSS5.8AI score0.0155EPSS
Exploits0References5
RedHat Linux
RedHat Linux
added 2019/02/20 2:11 p.m.3 views

jenkins-plugin-git: CSRF vulnerability in Git Plugin (SECURITY-1095)

A cross-site request forgery vulnerability exists in Jenkins Git Plugin 3.9.1 and earlier in src/main/java/hudson/plugins/git/GitTagAction.java that allows attackers to create a Git tag in a workspace and attach corresponding metadata to a build record...

4.3CVSS6.5AI score0.01145EPSS
Exploits0References5
Rows per page
Query Builder