Lucene search
K

6 matches found

SUSE CVE
SUSE CVE
added 2023/02/15 4:19 a.m.1 views

SUSE CVE-2018-1999005

A cross-site scripting vulnerability exists in Jenkins 2.132 and earlier, 2.121.1 and earlier in BuildTimelineWidget.java, BuildTimelineWidget/control.jelly that allows attackers with Job/Configure permission to define JavaScript that would be executed in another user's browser when that other us...

5.4CVSS4.7AI score0.00894EPSS
Exploits0References3
OpenVAS
OpenVAS
added 2018/07/24 12:0 a.m.106 views

Jenkins < 2.133 and < 2.121.2 LTS Multiple Vulnerabilities - Windows

Jenkins is prone to multiple vulnerabilities. SPDX-FileCopyrightText: 2018 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

8.8CVSS5.4AI score0.86641EPSS
Exploits8References1
OpenVAS
OpenVAS
added 2018/07/24 12:0 a.m.139 views

Jenkins < 2.133 and < 2.121.2 LTS Multiple Vulnerabilities - Linux

Jenkins is prone to multiple vulnerabilities. SPDX-FileCopyrightText: 2018 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

8.8CVSS5.4AI score0.86641EPSS
Exploits8References1
OSV
OSV
added 2018/07/23 7:29 p.m.22 views

CVE-2018-1999005

A cross-site scripting vulnerability exists in Jenkins 2.132 and earlier, 2.121.1 and earlier in BuildTimelineWidget.java, BuildTimelineWidget/control.jelly that allows attackers with Job/Configure permission to define JavaScript that would be executed in another user's browser when that other us...

5.4CVSS5.7AI score
Exploits0References2
CVE
CVE
added 2018/07/23 7:0 p.m.115 views

CVE-2018-1999005

CVE-2018-1999005 is a cross-site scripting vulnerability in Jenkins versions before 2.133 (and 2.121.1 and earlier) affecting BuildTimelineWidget.java and BuildTimelineWidget/control.jelly. Attackers with Job/Configure permission could inject JavaScript executed in another user’s browser during U...

5.4CVSS6.1AI score0.00894EPSS
Exploits0References2Affected Software1
Tenable Nessus
Tenable Nessus
added 2018/07/20 12:0 a.m.86 views

FreeBSD : jenkins -- multiple vulnerabilities (20a1881e-8a9e-11e8-bddf-d017c2ca229d)

Jenkins Security Advisory : DescriptionHigh SECURITY-897 / CVE-2018-1999001 Users without Overall/Read permission can have Jenkins reset parts of global configuration on the next restart High SECURITY-914 / CVE-2018-1999002 Arbitrary file read vulnerability Medium SECURITY-891 / CVE-2018-1999003...

8.8CVSS5.5AI score0.86641EPSS
Exploits8References9
Rows per page
Query Builder