CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

33 matches found

Vulnrichment•added 2022/10/11 5:2 p.m.•7 views

CVE-2021-36899 WordPress Asset CleanUp: Page Speed Booster plugin <= 1.3.8.4 - Authenticated Reflected Cross-Site Scripting (XSS) vulnerability

Authenticated admin+ Reflected Cross-Site Scripting XSS vulnerability in Gabe Livan's Asset CleanUp: Page Speed Booster plugin = 1.3.8.4 at WordPress...

4.8CVSS4.9AI score0.00322EPSS

Exploits0References2

Positive Technologies•added 2022/10/11 12:0 a.m.•3 views

PT-2022-10596 · WordPress · Asset Cleanup: Page Speed Booster

Name of the Vulnerable Software and Affected Versions: Asset CleanUp: Page Speed Booster plugin versions = 1.3.8.4 Description: The issue is related to an Authenticated Reflected Cross-Site Scripting XSS vulnerability. This type of vulnerability allows an attacker to inject malicious scripts into...

4.8CVSS4.9AI score0.00322EPSS

Exploits0References3

OSV•added 2022/05/24 5:12 p.m.•9 views

GHSA-M7PR-M4CX-6M22 Reflected XSS vulnerability in Jenkins Queue cleanup Plugin

A form validation HTTP endpoint in Queue cleanup Plugin 1.3 and earlier does not escape a query parameter displayed in an error message. This results in a reflected cross-site scripting vulnerability XSS. Queue cleanup Plugin 1.4 correctly escapes the query parameter...

6.1CVSS6AI score0.00168EPSS

Exploits0References6

Github Security Blog•added 2022/05/24 5:12 p.m.•17 views

Reflected XSS vulnerability in Jenkins Queue cleanup Plugin

6.1CVSS5.7AI score0.00168EPSS

Exploits0References6Affected Software1

OSV•added 2022/02/01 1:15 p.m.•2 views

CVE-2021-24983

The Asset CleanUp: Page Speed Booster WordPress plugin before 1.3.8.5 does not sanitise and escape POSted parameters sent to the wpassetcleanupfetchactivepluginsicons AJAX action available to admin users, leading to a Reflected Cross-Site Scripting issue...

6.1CVSS5.8AI score0.00282EPSS

Exploits2References1

BDU FSTEC•added 2020/06/10 12:0 a.m.•1 views

The vulnerability of the Queue cleanup Plugin, related to the lack of protective measures for website structures, allows attackers to execute cross-site scripting (XSS) attacks.

The vulnerability of the Queue cleanup Plugin is related to the lack of protective measures for website structures. Exploiting this vulnerability allows a remote attacker to perform cross-site scripting attacks XSS...

6.4CVSS6.1AI score0.00168EPSS

Exploits0References4Affected Software1

CNVD•added 2020/03/26 12:0 a.m.•1 views

CloudBees jenkins Queue cleanup plugin cross-site scripting vulnerability

CloudBees Jenkins Hudson Labs is the United States CloudBees company's set of Java-based development of continuous integration tools. The product is mainly used to monitor the continuous software version release/testing projects and some timed tasks . Queue cleanup Plugin is used in one of the...

6.1CVSS6.4AI score0.00168EPSS

Exploits0References1

OSV•added 2020/03/25 5:15 p.m.•12 views

CVE-2020-2169

A form validation endpoint in Jenkins Queue cleanup Plugin 1.3 and earlier does not properly escape a query parameter displayed in an error message, resulting in a reflected XSS vulnerability...

6.1CVSS5.9AI score

Exploits0References2

NVD•added 2020/03/25 5:15 p.m.•7 views

CVE-2020-2169

A form validation endpoint in Jenkins Queue cleanup Plugin 1.3 and earlier does not properly escape a query parameter displayed in an error message, resulting in a reflected XSS vulnerability...

6.1CVSS6AI score0.00168EPSS

Exploits0References2

Prion•added 2020/03/25 5:15 p.m.•12 views

Cross site scripting

A form validation endpoint in Jenkins Queue cleanup Plugin 1.3 and earlier does not properly escape a query parameter displayed in an error message, resulting in a reflected XSS vulnerability...

4.3CVSS5.9AI score0.00168EPSS

Exploits0References2Affected Software1

Cvelist•added 2020/03/25 4:5 p.m.•13 views

CVE-2020-2169

A form validation endpoint in Jenkins Queue cleanup Plugin 1.3 and earlier does not properly escape a query parameter displayed in an error message, resulting in a reflected XSS vulnerability...

6AI score0.00168EPSS

Exploits0References2

CVE•added 2020/03/25 4:5 p.m.•69 views

CVE-2020-2169

CVE-2020-2169 affects Jenkins Queue Cleanup Plugin version 1.3 and earlier, where a form validation endpoint fails to properly escape a query parameter displayed in an error message, causing a reflected XSS vulnerability. The issue is specific to the plugin’s web UI and can lead to client-side co...

6.1CVSS5.9AI score0.00168EPSS

Exploits0References2Affected Software1

Positive Technologies•added 2020/03/25 12:0 a.m.•2 views

PT-2020-2657 · Jenkins · Jenkins Queue Cleanup Plugin +1

Name of the Vulnerable Software and Affected Versions: Jenkins Queue cleanup Plugin versions 1.3 and earlier Description: The issue is related to a form validation endpoint in the Jenkins Queue cleanup Plugin that does not properly escape a query parameter displayed in an error message, resulting...

6.4CVSS6AI score0.00168EPSS

Exploits0References10

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by