Lucene search
K

30 matches found

vulnersOsv
vulnersOsv
added 2026/04/29 3:30 p.m.7 views

io.jenkins.blueocean:blueocean (>=1.27.17 <=1.27.25), io.jenkins.blueocean:blueocean-bitbucket-pipeline (>=1.27.17 <=1.27.25) +10 more potentially affected by CVE-2026-42522 via org.jenkins-ci.plugins:github-branch-source (>=1793.v1831e9c68d77 <=1967.vdea_d580c1a_b_a_)

org.jenkins-ci.plugins:github-branch-source MAVEN version =1793.v1831e9c68d77, =1.27.17, =1.27.17, =1.27.17, =1.27.17, =1.27.17, =1.27.17, =1.27.17, =634.v371dc6d978a3, =1.83.v5bff0e55cd2d, =4.204.vf74143795d5f, =611.v70d151e60ec4, =685.v53b070455063 - org.jenkins-ci.plugins:pipeline-github...

4.3CVSS5.4AI score0.00184EPSS
Exploits0
EUVD
EUVD
added 2025/10/03 8:7 p.m.4 views

EUVD-2023-2288

Malicious code in bioql PyPI...

8.8CVSS8.5AI score0.00537EPSS
Exploits0References3
EUVD
EUVD
added 2025/10/03 8:7 p.m.5 views

EUVD-2022-2986

Malicious code in bioql PyPI...

5.4CVSS6.1AI score0.01227EPSS
Exploits0References5
EUVD
EUVD
added 2025/10/03 8:7 p.m.5 views

EUVD-2022-5406

Malicious code in bioql PyPI...

6.5CVSS6.4AI score0.02126EPSS
Exploits0References7
EUVD
EUVD
added 2025/10/03 8:7 p.m.6 views

EUVD-2022-5335

Malicious code in bioql PyPI...

4.3CVSS4.7AI score0.00849EPSS
Exploits0References6
EUVD
EUVD
added 2025/10/03 8:7 p.m.4 views

EUVD-2022-2616

Malicious code in bioql PyPI...

6.5CVSS6.4AI score0.00782EPSS
Exploits0References8
EUVD
EUVD
added 2025/10/03 8:7 p.m.6 views

EUVD-2022-5060

Malicious code in bioql PyPI...

6.5CVSS6.1AI score0.01108EPSS
Exploits0References5
NVD
NVD
added 2023/08/16 3:15 p.m.32 views

CVE-2023-40341

A cross-site request forgery CSRF vulnerability in Jenkins Blue Ocean Plugin 1.27.5 and earlier allows attackers to connect to an attacker-specified URL, capturing GitHub credentials associated with an attacker-specified job...

8.8CVSS9.3AI score0.00537EPSS
Exploits0References2
Cvelist
Cvelist
added 2023/08/16 2:32 p.m.30 views

CVE-2023-40341

A cross-site request forgery CSRF vulnerability in Jenkins Blue Ocean Plugin 1.27.5 and earlier allows attackers to connect to an attacker-specified URL, capturing GitHub credentials associated with an attacker-specified job...

8.9AI score0.00537EPSS
Exploits0References2
CNNVD
CNNVD
added 2023/08/16 12:0 a.m.6 views

Jenkins Plugin Blue Ocean 跨站请求伪造漏洞

Jenkins and Jenkins Plugin are both Jenkins open source products.Jenkins is a software application . An open source automation server Jenkins provides hundreds of plugins to support building, deploying, and automating any project.Jenkins Plugin is a software application. A cross-site request...

8.8CVSS7.7AI score0.00537EPSS
Exploits0References5
RedHat Linux
RedHat Linux
added 2023/05/17 5:53 p.m.4 views

plugin: CSRF vulnerability in Blue Ocean Plugin

A cross-site request forgery CSRF vulnerability in Jenkins Blue Ocean Plugin 1.25.3 and earlier allows attackers to connect to an attacker-specified HTTP server...

6.5CVSS5.7AI score0.00633EPSS
Exploits0References5
RedHat Linux
RedHat Linux
added 2023/02/08 6:41 p.m.3 views

plugin: CSRF vulnerability in Blue Ocean Plugin

A cross-site request forgery CSRF vulnerability in Jenkins Blue Ocean Plugin 1.25.3 and earlier allows attackers to connect to an attacker-specified HTTP server...

6.5CVSS5.7AI score0.00633EPSS
Exploits0References5
RedHat Linux
RedHat Linux
added 2023/01/12 4:49 p.m.5 views

plugin: CSRF vulnerability in Blue Ocean Plugin

A cross-site request forgery CSRF vulnerability in Jenkins Blue Ocean Plugin 1.25.3 and earlier allows attackers to connect to an attacker-specified HTTP server...

6.5CVSS5.7AI score0.00633EPSS
Exploits0References5
RedhatCVE
RedhatCVE
added 2022/08/19 4:38 a.m.51 views

CVE-2022-30953

A cross-site request forgery CSRF vulnerability in Jenkins Blue Ocean Plugin 1.25.3 and earlier allows attackers to connect to an attacker-specified HTTP server...

6.5CVSS3.2AI score0.00633EPSS
Exploits0References4
NVD
NVD
added 2022/05/17 3:15 p.m.21 views

CVE-2022-30953

A cross-site request forgery CSRF vulnerability in Jenkins Blue Ocean Plugin 1.25.3 and earlier allows attackers to connect to an attacker-specified HTTP server...

6.5CVSS0.00633EPSS
Exploits0References2
ATTACKERKB
ATTACKERKB
added 2022/05/17 3:15 p.m.3 views

CVE-2022-30954

Jenkins Blue Ocean Plugin 1.25.3 and earlier does not perform a permission check in several HTTP endpoints, allowing attackers with Overall/Read permission to connect to an attacker-specified HTTP server...

6.5CVSS6.6AI score0.00782EPSS
Exploits0References3
ATTACKERKB
ATTACKERKB
added 2022/05/17 3:15 p.m.3 views

CVE-2022-30953

A cross-site request forgery CSRF vulnerability in Jenkins Blue Ocean Plugin 1.25.3 and earlier allows attackers to connect to an attacker-specified HTTP server...

6.5CVSS6.4AI score0.00633EPSS
Exploits0References3
OSV
OSV
added 2022/05/17 3:15 p.m.23 views

CVE-2022-30953

A cross-site request forgery CSRF vulnerability in Jenkins Blue Ocean Plugin 1.25.3 and earlier allows attackers to connect to an attacker-specified HTTP server...

6.5CVSS6.5AI score
Exploits0References2
Prion
Prion
added 2022/05/17 3:15 p.m.22 views

Code injection

Jenkins Blue Ocean Plugin 1.25.3 and earlier does not perform a permission check in several HTTP endpoints, allowing attackers with Overall/Read permission to connect to an attacker-specified HTTP server...

4CVSS7.5AI score0.00782EPSS
Exploits0References2Affected Software1
CNNVD
CNNVD
added 2022/05/17 12:0 a.m.2 views

Jenkins Blue Ocean Plugin 跨站请求伪造漏洞

Jenkins and Jenkins Plugin are both open source products from Jenkins.Jenkins is an application. An open source automation server, Jenkins provides hundreds of plugins to support building, deploying, and automating any project.Jenkins Plugin is an application.Jenkins Blue Ocean 1.25.3 and earlier...

6.5CVSS6.2AI score0.00633EPSS
Exploits0References9
Rows per page
Query Builder