Lucene search
K

24 matches found

EUVD
EUVD
added 2025/10/03 8:7 p.m.5 views

EUVD-2022-3745

Malicious code in bioql PyPI...

8.8CVSS8.4AI score0.00844EPSS
Exploits0References4
EUVD
EUVD
added 2025/10/03 8:7 p.m.7 views

EUVD-2022-4091

Malicious code in bioql PyPI...

4.3CVSS4.9AI score0.00823EPSS
Exploits0References4
EUVD
EUVD
added 2025/10/03 8:7 p.m.10 views

EUVD-2022-3497

Malicious code in bioql PyPI...

4.3CVSS5AI score0.00691EPSS
Exploits0References5
RedhatCVE
RedhatCVE
added 2025/05/22 4:5 p.m.10 views

CVE-2020-2093

A cross-site request forgery vulnerability in Jenkins Health Advisor by CloudBees Plugin 3.0 and earlier allows attackers to send an email with fixed content to an attacker-specified recipient...

8.8CVSS6.6AI score0.00844EPSS
Exploits0
Veracode
Veracode
added 2025/05/19 5:10 p.m.5 views

Cross-site Scripting (XSS)

org.jenkins-ci.plugins:cloudbees-jenkins-advisor is vulnerable to Cross-site Scripting XSS. The vulnerability is due to improper output encoding due to failure to escape responses from the Jenkins Health Advisor server, allowing attackers to inject scripts through controlled server responses...

8.8CVSS5.8AI score0.00495EPSS
Exploits0References3Affected Software1
RedhatCVE
RedhatCVE
added 2025/05/16 9:20 p.m.24 views

CVE-2025-47885

Jenkins Health Advisor by CloudBees Plugin 374.v194bd4f0c8c8 and earlier does not escape responses from the Jenkins Health Advisor server, resulting in a stored cross-site scripting XSS vulnerability exploitable by attackers able to control Jenkins Health Advisor server responses...

8.8CVSS5.5AI score0.00495EPSS
Exploits0References1
Github Security Blog
Github Security Blog
added 2025/05/14 9:31 p.m.18 views

Jenkins Health Advisor by CloudBees Plugin Vulnerable to Cross-Site Scripting

Jenkins Health Advisor by CloudBees Plugin 374.v194bd4f0c8c8 and earlier does not escape responses from the Jenkins Health Advisor server, resulting in a stored cross-site scripting XSS vulnerability exploitable by attackers able to control Jenkins Health Advisor server responses...

8.8CVSS5.4AI score0.00495EPSS
Exploits0References4Affected Software1
OSV
OSV
added 2025/05/14 9:31 p.m.9 views

GHSA-XRPQ-4G9W-QRWJ Jenkins Health Advisor by CloudBees Plugin Vulnerable to Cross-Site Scripting

Jenkins Health Advisor by CloudBees Plugin 374.v194bd4f0c8c8 and earlier does not escape responses from the Jenkins Health Advisor server, resulting in a stored cross-site scripting XSS vulnerability exploitable by attackers able to control Jenkins Health Advisor server responses...

8.8CVSS5.3AI score0.00495EPSS
Exploits0References4
OSV
OSV
added 2025/05/14 9:15 p.m.6 views

CVE-2025-47885

Jenkins Health Advisor by CloudBees Plugin 374.v194bd4f0c8c8 and earlier does not escape responses from the Jenkins Health Advisor server, resulting in a stored cross-site scripting XSS vulnerability exploitable by attackers able to control Jenkins Health Advisor server responses...

8.8CVSS5.6AI score
Exploits0References1
NVD
NVD
added 2025/05/14 9:15 p.m.48 views

CVE-2025-47885

Jenkins Health Advisor by CloudBees Plugin 374.v194bd4f0c8c8 and earlier does not escape responses from the Jenkins Health Advisor server, resulting in a stored cross-site scripting XSS vulnerability exploitable by attackers able to control Jenkins Health Advisor server responses...

8.8CVSS0.00495EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2025/05/14 8:35 p.m.8 views

CVE-2025-47885

Jenkins Health Advisor by CloudBees Plugin 374.v194bd4f0c8c8 and earlier does not escape responses from the Jenkins Health Advisor server, resulting in a stored cross-site scripting XSS vulnerability exploitable by attackers able to control Jenkins Health Advisor server responses...

5.5AI score0.00495EPSS
Exploits0References1
AlpineLinux
AlpineLinux
added 2025/05/14 8:35 p.m.5 views

CVE-2025-47885

Jenkins Health Advisor by CloudBees Plugin 374.v194bd4f0c8c8 and earlier does not escape responses from the Jenkins Health Advisor server, resulting in a stored cross-site scripting XSS vulnerability exploitable by attackers able to control Jenkins Health Advisor server responses...

8.8CVSS5.8AI score0.00495EPSS
Exploits0References1
Cvelist
Cvelist
added 2025/05/14 8:35 p.m.48 views

CVE-2025-47885

Jenkins Health Advisor by CloudBees Plugin 374.v194bd4f0c8c8 and earlier does not escape responses from the Jenkins Health Advisor server, resulting in a stored cross-site scripting XSS vulnerability exploitable by attackers able to control Jenkins Health Advisor server responses...

0.00495EPSS
Exploits0References1
CVE
CVE
added 2025/05/14 8:35 p.m.61 views

CVE-2025-47885

CVE-2025-47885 affects Jenkins Health Advisor by CloudBees Plugin (374.v194b_d4f0c8c8 and earlier). The root cause is failure to escape responses from the Jenkins Health Advisor server, resulting in a stored XSS vulnerability that can be exploited by an attacker who can control server responses. ...

8.8CVSS5.7AI score0.00495EPSS
Exploits0References1Affected Software1
Positive Technologies
Positive Technologies
added 2025/05/14 12:0 a.m.12 views

PT-2025-21238 · Cloudbees +1 · Jenkins Health Advisor By Cloudbees Plugin +1

Name of the Vulnerable Software and Affected Versions: Jenkins Health Advisor by CloudBees Plugin versions 374.v194b d4f0c8c8 and earlier Description: The issue results in a stored cross-site scripting XSS vulnerability. This occurs because the plugin does not escape responses from the Jenkins...

8.8CVSS4.8AI score0.00495EPSS
Exploits0References11
CNNVD
CNNVD
added 2025/05/14 12:0 a.m.6 views

Jenkins plugin Health Advisor by CloudBees 跨站脚本漏洞

Jenkins and Jenkins plugin are both Jenkins open source products.Jenkins is an application. An open source automation server Jenkins provides hundreds of plugins to support building, deploying and automating any project.Jenkins plugin is an application software plugin. A security vulnerability...

8.8CVSS5.7AI score0.00495EPSS
Exploits0References2
CNVD
CNVD
added 2020/09/17 12:0 a.m.2 views

CloudBees Jenkins Health Advisor by CloudBees Privilege Control Vulnerability

CloudBees Jenkins Hudson Labs is the United States CloudBees company a set of Java-based development of continuous integration tools . The product is mainly used to monitor the continuous software version release/testing project and some timed execution of the task . A security vulnerability exis...

4.3CVSS6.8AI score0.00691EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2020/09/16 12:0 a.m.10 views

PT-2020-15483 · Cloudbees +1 · Jenkins Health Advisor By Cloudbees Plugin +1

Name of the Vulnerable Software and Affected Versions: Jenkins Health Advisor by CloudBees Plugin versions 3.2.0 and earlier Description: The issue arises from an incorrect permission check in an HTTP endpoint, allowing attackers with Overall/Read permission to view the endpoint, which includes a...

4.3CVSS4.4AI score0.00691EPSS
Exploits0References7
NVD
NVD
added 2020/01/15 4:15 p.m.31 views

CVE-2020-2093

A cross-site request forgery vulnerability in Jenkins Health Advisor by CloudBees Plugin 3.0 and earlier allows attackers to send an email with fixed content to an attacker-specified recipient...

8.8CVSS8.6AI score0.00844EPSS
Exploits0References1
OSV
OSV
added 2020/01/15 4:15 p.m.19 views

CVE-2020-2093

A cross-site request forgery vulnerability in Jenkins Health Advisor by CloudBees Plugin 3.0 and earlier allows attackers to send an email with fixed content to an attacker-specified recipient...

8.8CVSS6.6AI score
Exploits0References1
Rows per page
Query Builder