Lucene search
K

29 matches found

Vulnrichment
Vulnrichment
added 2024/03/06 5:1 p.m.17 views

CVE-2024-28157

Jenkins GitBucket Plugin 0.8 and earlier does not sanitize Gitbucket URLs on build views, resulting in a stored cross-site scripting XSS vulnerability exploitable by attackers able to configure jobs...

5.4AI score0.01253EPSS
Exploits0References2
CVE
CVE
added 2024/03/06 5:1 p.m.78 views

CVE-2024-28157

CVE-2024-28157 affects Jenkins GitBucket Plugin, version 0.8 and earlier. The vulnerability is stored cross-site scripting (XSS) caused by unsanitized Gitbucket URLs on build views, exploitable by attackers who can configure jobs. The CVE entry documents the issue and confirms the vulnerability s...

8CVSS5.3AI score0.01253EPSS
Exploits0References2Affected Software1
Cvelist
Cvelist
added 2024/03/06 5:1 p.m.34 views

CVE-2024-28157

Jenkins GitBucket Plugin 0.8 and earlier does not sanitize Gitbucket URLs on build views, resulting in a stored cross-site scripting XSS vulnerability exploitable by attackers able to configure jobs...

5.4AI score0.01253EPSS
Exploits0References2
CNNVD
CNNVD
added 2024/03/06 12:0 a.m.5 views

Jenkins GitBucket Plugin Security Vulnerability

Jenkins and Jenkins Plugin are both Jenkins open source products.Jenkins is a software application . An open source automation server Jenkins provides hundreds of plugins to support building, deploying, and automating any project.Jenkins Plugin is a software application. A security vulnerability ...

8CVSS5.6AI score0.01253EPSS
Exploits0References2
Positive Technologies
Positive Technologies
added 2024/03/06 12:0 a.m.7 views

PT-2024-22303

Name of the Vulnerable Software and Affected Versions Jenkins GitBucket Plugin versions 0.8 and earlier Description The issue is related to a stored cross-site scripting XSS vulnerability. This occurs because Gitbucket URLs on build views are not properly sanitized, allowing attackers who can...

8CVSS7.3AI score0.01253EPSS
Exploits0References8
BDU FSTEC
BDU FSTEC
added 2022/02/18 12:0 a.m.19 views

The vulnerability of the GitBucket collaborative development web service lies in its lack of protection for website structures, allowing attackers to execute arbitrary code.

The vulnerability in the collaborative development web service GitBucket is related to the lack of protective measures for the website structure. Exploiting this vulnerability allows a malicious actor to execute arbitrary code remotely...

9CVSS5.9AI score
Exploits0References1Affected Software1
0day.today
0day.today
added 2018/05/21 12:0 a.m.67 views

GitBucket 4.23.1 - Remote Code Execution Exploit

Exploit for java platform in category web applications Exploit Title: GitBucket 4.23.1 Unauthenticated RCE Software Link: https://github.com/gitbucket/gitbucket Exploit Author: Kacper Szurek Contact: https://twitter.com/KacperSzurek Website: https://security.szurek.pl/ Category: remote 1...

Exploits0
exploitpack
exploitpack
added 2018/05/21 12:0 a.m.27 views

GitBucket 4.23.1 - Remote Code Execution

GitBucket 4.23.1 - Remote Code Execution Exploit Title: GitBucket 4.23.1 Unauthenticated RCE Date: 21-05-2018 Software Link: https://github.com/gitbucket/gitbucket Exploit Author: Kacper Szurek Contact: https://twitter.com/KacperSzurek Website: https://security.szurek.pl/ Category: remote 1...

Exploits0
Exploit DB
Exploit DB
added 2018/05/21 12:0 a.m.40 views

GitBucket 4.23.1 - Remote Code Execution

Exploit Title: GitBucket 4.23.1 Unauthenticated RCE Date: 21-05-2018 Software Link: https://github.com/gitbucket/gitbucket Exploit Author: Kacper Szurek Contact: https://twitter.com/KacperSzurek Website: https://security.szurek.pl/ Category: remote 1. Description Abusing weak secret token and...

7.4AI score
Exploits0
Rows per page
Query Builder