Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

97 matches found

CNVD
CNVDadded 2020/09/02 12:0 a.m.2 views

CloudBees Jenkins CSRF Vulnerability (CNVD-2020-51390)

CloudBees Jenkins Hudson Labs is the United States CloudBees company's set of Java-based development of continuous integration tools. The product is mainly used to monitor the continuous software version of the release/test project and some timed tasks . LTS is a long-term support for...

8.8CVSS6.8AI score0.00433EPSS
Exploits0References1
CNVD
CNVDadded 2020/09/02 12:0 a.m.1 views

CloudBees Jenkins path traversal vulnerability (CNVD-2020-52604)

CloudBees Jenkins Hudson Labs is the United States CloudBees company's set of Java-based development of continuous integration tools. The product is mainly used to monitor the continuous software version of the release/test project and some timed tasks . LTS is a long-term support for...

6.5CVSS6.7AI score0.00061EPSS
Exploits0References1
NVD
NVDadded 2020/09/01 2:15 p.m.9 views

CVE-2020-2242

A missing permission check in Jenkins database Plugin 1.6 and earlier allows attackers with Overall/Read access to Jenkins to connect to an attacker-specified database server using attacker-specified credentials...

6.5CVSS6.4AI score0.00061EPSS
Exploits0References2
NVD
NVDadded 2020/09/01 2:15 p.m.10 views

CVE-2020-2241

A cross-site request forgery CSRF vulnerability in Jenkins database Plugin 1.6 and earlier allows attackers to connect to an attacker-specified database server using attacker-specified credentials...

8.8CVSS8.7AI score0.00433EPSS
Exploits0References2
NVD
NVDadded 2020/09/01 2:15 p.m.7 views

CVE-2020-2240

A cross-site request forgery CSRF vulnerability in Jenkins database Plugin 1.6 and earlier allows attackers to execute arbitrary SQL scripts...

8.8CVSS9.1AI score0.00199EPSS
Exploits0References2
OSV
OSVadded 2020/09/01 2:15 p.m.14 views

CVE-2020-2241

A cross-site request forgery CSRF vulnerability in Jenkins database Plugin 1.6 and earlier allows attackers to connect to an attacker-specified database server using attacker-specified credentials...

8.8CVSS6.8AI score
Exploits0References2
Prion
Prionadded 2020/09/01 2:15 p.m.11 views

Design/Logic Flaw

A missing permission check in Jenkins database Plugin 1.6 and earlier allows attackers with Overall/Read access to Jenkins to connect to an attacker-specified database server using attacker-specified credentials...

4CVSS6.3AI score0.00061EPSS
Exploits0References2Affected Software1
Prion
Prionadded 2020/09/01 2:15 p.m.14 views

Cross site request forgery (csrf)

A cross-site request forgery CSRF vulnerability in Jenkins database Plugin 1.6 and earlier allows attackers to connect to an attacker-specified database server using attacker-specified credentials...

6.8CVSS8.7AI score0.00433EPSS
Exploits0References2Affected Software1
Prion
Prionadded 2020/09/01 2:15 p.m.8 views

Cross site request forgery (csrf)

A cross-site request forgery CSRF vulnerability in Jenkins database Plugin 1.6 and earlier allows attackers to execute arbitrary SQL scripts...

6.8CVSS9.1AI score0.00199EPSS
Exploits0References2Affected Software1
CVE
CVEadded 2020/09/01 1:50 p.m.70 views

CVE-2020-2242

CVE-2020-2242 — Jenkins Database Plugin : Jenkins Database Plugin versions 1.6 and earlier lack a permission check, allowing users with Overall/Read access to connect to an attacker‑specified database server using attacker‑specified credentials. The issue’s impact is that an attacker may trigger ...

6.5CVSS6.3AI score0.00061EPSS
Exploits0References2Affected Software1
Cvelist
Cvelistadded 2020/09/01 1:50 p.m.12 views

CVE-2020-2240

A cross-site request forgery CSRF vulnerability in Jenkins database Plugin 1.6 and earlier allows attackers to execute arbitrary SQL scripts...

9.2AI score0.00199EPSS
Exploits0References2
Cvelist
Cvelistadded 2020/09/01 1:50 p.m.12 views

CVE-2020-2241

A cross-site request forgery CSRF vulnerability in Jenkins database Plugin 1.6 and earlier allows attackers to connect to an attacker-specified database server using attacker-specified credentials...

8.8AI score0.00433EPSS
Exploits0References2
CVE
CVEadded 2020/09/01 1:50 p.m.63 views

CVE-2020-2240

CVE-2020-2240 pertains to Jenkins Database Plugin (versions ≤ 1.6). The issue is a CSRF vulnerability arising from a lack of proper origin validation, enabling an attacker to trigger unintended requests and execute arbitrary SQL scripts against the plugin’s database. Several sources (Red Hat, CNV...

8.8CVSS9.1AI score0.00199EPSS
Exploits0References2Affected Software1
Positive Technologies
Positive Technologiesadded 2020/09/01 12:0 a.m.3 views

PT-2020-15462 · Jenkins · Jenkins Database Plugin +1

Name of the Vulnerable Software and Affected Versions: Jenkins database Plugin versions 1.6 and earlier Description: A cross-site request forgery CSRF vulnerability allows attackers to connect to an attacker-specified database server using attacker-specified credentials. The vulnerability affects...

8.8CVSS8.7AI score0.00433EPSS
Exploits0References8
Positive Technologies
Positive Technologiesadded 2020/09/01 12:0 a.m.2 views

PT-2020-15461 · Jenkins · Jenkins Database Plugin +1

Name of the Vulnerable Software and Affected Versions: Jenkins Database Plugin versions 1.6 and earlier Description: A cross-site request forgery CSRF vulnerability allows attackers to execute arbitrary SQL scripts because the database console does not require POST requests. This issue enables...

8.8CVSS9AI score0.00199EPSS
Exploits0References7
Positive Technologies
Positive Technologiesadded 2020/09/01 12:0 a.m.2 views

PT-2020-15463 · Jenkins · Jenkins Database Plugin +1

Name of the Vulnerable Software and Affected Versions: Jenkins Database Plugin versions 1.6 and earlier Description: A missing permission check in the Jenkins Database Plugin allows attackers with Overall/Read access to Jenkins to connect to an attacker-specified database server using...

6.5CVSS6.2AI score0.00061EPSS
Exploits0References7
OSV
OSVadded 2020/02/11 12:15 p.m.3 views

CVE-2020-8596

participants-database.php in the Participants Database plugin 1.9.5.5 and previous versions for WordPress has a time-based SQL injection vulnerability via the ascdesc, listfiltercount, or sortBy parameters. It is possible to exfiltrate data and potentially execute code if certain conditions are m...

7.5CVSS7.2AI score0.01245EPSS
Exploits1References2
Prion
Prionadded 2020/02/11 12:15 p.m.10 views

Sql injection

participants-database.php in the Participants Database plugin 1.9.5.5 and previous versions for WordPress has a time-based SQL injection vulnerability via the ascdesc, listfiltercount, or sortBy parameters. It is possible to exfiltrate data and potentially execute code if certain conditions are m...

6CVSS8AI score0.01245EPSS
Exploits1References2Affected Software1
CVE
CVEadded 2020/02/10 9:37 p.m.71 views

CVE-2020-8596

CVE-2020-8596 affects the WordPress plugin Participants Database (versions ≤ 1.9.5.5). The vulnerability is a time-based SQL injection in the plugin’s parameters ascdesc, list_filter_count, and sortBy, which can enable data exfiltration and, under certain conditions, remote code execution. Exploi...

7.5CVSS7.9AI score0.01245EPSS
Exploits1References2Affected Software1
CNVD
CNVDadded 2019/10/14 12:0 a.m.2 views

CloudBees Jenkins Audit to Database Plugin Trust Management Issue Vulnerability

CloudBees Jenkins Hudson Labs is the United States CloudBees company's set of Java-based development of continuous integration tools. The product is mainly used to monitor the continuous software version release/testing projects and some timed tasks . Audit to Database Plugin is used in which a...

8.8CVSS6.8AI score0.00078EPSS
Exploits0References1
Rows per page
Query Builder