29 matches found
CVE-2024-28157
Jenkins GitBucket Plugin 0.8 and earlier does not sanitize Gitbucket URLs on build views, resulting in a stored cross-site scripting XSS vulnerability exploitable by attackers able to configure jobs...
CVE-2024-28157
CVE-2024-28157 affects Jenkins GitBucket Plugin, version 0.8 and earlier. The vulnerability is stored cross-site scripting (XSS) caused by unsanitized Gitbucket URLs on build views, exploitable by attackers who can configure jobs. The CVE entry documents the issue and confirms the vulnerability s...
CVE-2024-28157
Jenkins GitBucket Plugin 0.8 and earlier does not sanitize Gitbucket URLs on build views, resulting in a stored cross-site scripting XSS vulnerability exploitable by attackers able to configure jobs...
Jenkins GitBucket Plugin Security Vulnerability
Jenkins and Jenkins Plugin are both Jenkins open source products.Jenkins is a software application . An open source automation server Jenkins provides hundreds of plugins to support building, deploying, and automating any project.Jenkins Plugin is a software application. A security vulnerability ...
PT-2024-22303
Name of the Vulnerable Software and Affected Versions Jenkins GitBucket Plugin versions 0.8 and earlier Description The issue is related to a stored cross-site scripting XSS vulnerability. This occurs because Gitbucket URLs on build views are not properly sanitized, allowing attackers who can...
The vulnerability of the GitBucket collaborative development web service lies in its lack of protection for website structures, allowing attackers to execute arbitrary code.
The vulnerability in the collaborative development web service GitBucket is related to the lack of protective measures for the website structure. Exploiting this vulnerability allows a malicious actor to execute arbitrary code remotely...
GitBucket 4.23.1 - Remote Code Execution Exploit
Exploit for java platform in category web applications Exploit Title: GitBucket 4.23.1 Unauthenticated RCE Software Link: https://github.com/gitbucket/gitbucket Exploit Author: Kacper Szurek Contact: https://twitter.com/KacperSzurek Website: https://security.szurek.pl/ Category: remote 1...
GitBucket 4.23.1 - Remote Code Execution
GitBucket 4.23.1 - Remote Code Execution Exploit Title: GitBucket 4.23.1 Unauthenticated RCE Date: 21-05-2018 Software Link: https://github.com/gitbucket/gitbucket Exploit Author: Kacper Szurek Contact: https://twitter.com/KacperSzurek Website: https://security.szurek.pl/ Category: remote 1...
GitBucket 4.23.1 - Remote Code Execution
Exploit Title: GitBucket 4.23.1 Unauthenticated RCE Date: 21-05-2018 Software Link: https://github.com/gitbucket/gitbucket Exploit Author: Kacper Szurek Contact: https://twitter.com/KacperSzurek Website: https://security.szurek.pl/ Category: remote 1. Description Abusing weak secret token and...