Lucene search
K

72 matches found

CNVD
CNVD
added 2019/01/11 12:0 a.m.4 views

CloudBees Jenkins JUnit Plugin Cross-Site Request Forgery Vulnerability

CloudBees Jenkins formerly known as Hudson Labs is the U.S. CloudBees set of Java-based development of continuous integration tools , it is mainly used to monitor the continuous software version of the release/testing project and a number of timed tasks . JUnit Plugin is used in one of the Java...

6.5CVSS6.8AI score0.00809EPSS
Exploits0References1
NVD
NVD
added 2019/01/09 11:29 p.m.24 views

CVE-2018-1000411

A cross-site request forgery vulnerability exists in Jenkins JUnit Plugin 1.25 and earlier in TestObject.java that allows setting the description of a test result...

6.5CVSS6.4AI score0.00809EPSS
Exploits0References2
OSV
OSV
added 2019/01/09 11:29 p.m.20 views

CVE-2018-1000411

A cross-site request forgery vulnerability exists in Jenkins JUnit Plugin 1.25 and earlier in TestObject.java that allows setting the description of a test result...

6.5CVSS6.6AI score
Exploits0References2
Prion
Prion
added 2019/01/09 11:29 p.m.24 views

Cross site request forgery (csrf)

A cross-site request forgery vulnerability exists in Jenkins JUnit Plugin 1.25 and earlier in TestObject.java that allows setting the description of a test result...

4.3CVSS6.4AI score0.00809EPSS
Exploits0References2Affected Software1
CVE
CVE
added 2019/01/09 11:0 p.m.51 views

CVE-2018-1000411

The provided connected documents confirm CVE-2018-1000411 is a CSRF vulnerability in Jenkins JUnit Plugin (versions up to 1.25) affecting TestObject.java, allowing an attacker to set the description of a test result. The vulnerability description is consistent across sources (NVD, Red Hat, GHSA, ...

6.5CVSS6.3AI score0.00809EPSS
Exploits0References2Affected Software1
Cvelist
Cvelist
added 2019/01/09 11:0 p.m.26 views

CVE-2018-1000411

A cross-site request forgery vulnerability exists in Jenkins JUnit Plugin 1.25 and earlier in TestObject.java that allows setting the description of a test result...

6.4AI score0.00809EPSS
Exploits0References2
CNVD
CNVD
added 2018/02/27 12:0 a.m.4 views

CloudBees Jenkins JUnit Plugin Information Disclosure Vulnerability

CloudBees Jenkins formerly known as Hudson Labs is the U.S. CloudBees set of Java-based development of continuous integration tools , it is mainly used to monitor the continuous software version of the release/testing project and a number of timed tasks . JUnit Plugin is used in one of the Java...

8.3CVSS6.7AI score0.01097EPSS
Exploits0References1
Cvelist
Cvelist
added 2018/02/09 11:0 p.m.16 views

CVE-2018-1000056

Jenkins JUnit Plugin 1.23 and earlier processes XML external entities in files it parses as part of the build process, allowing attackers with user permissions in Jenkins to extract secrets from the Jenkins master, perform server-side request forgery, or denial-of-service attacks...

8.3AI score0.01097EPSS
Exploits0References1
CVE
CVE
added 2018/02/09 11:0 p.m.64 views

CVE-2018-1000056

The CVE-2018-1000056 entry concerns Jenkins JUnit Plugin

8.3CVSS8.2AI score0.01097EPSS
Exploits0References1Affected Software1
RedhatCVE
RedhatCVE
added 2018/02/06 10:20 p.m.20 views

CVE-2018-1000056

Jenkins JUnit Plugin 1.23 and earlier processes XML external entities in files it parses as part of the build process, allowing attackers with user permissions in Jenkins to extract secrets from the Jenkins master, perform server-side request forgery, or denial-of-service attacks...

8.3CVSS5.3AI score0.01097EPSS
Exploits0References1
OpenVAS
OpenVAS
added 2016/06/08 12:0 a.m.19 views

Fedora Update for jenkins-junit-plugin FEDORA-2016-f3b40fcbc3

The remote host is missing an update for the SPDX-FileCopyrightText: 2016 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.5CVSS7.2AI score0.01755EPSS
Exploits0References2
OpenVAS
OpenVAS
added 2015/01/05 12:0 a.m.19 views

Fedora Update for jenkins-junit-plugin FEDORA-2014-15776

The remote host is missing an update for the SPDX-FileCopyrightText: 2015 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.5AI score
Exploits0References2
Rows per page
Query Builder