CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

8 matches found

RedhatCVE•added 2026/01/07 9:31 a.m.•5 views

CVE-2019-16545

Jenkins QMetry for JIRA - Test Management Plugin transmits credentials in its configuration in plain text as part of job configuration forms, potentially resulting in their exposure...

6.5CVSS6.9AI score0.00541EPSS

Exploits0References1

EUVD•added 2025/10/03 8:7 p.m.•4 views

EUVD-2022-2958

Malicious code in bioql PyPI...

6.5CVSS6.6AI score0.00541EPSS

Exploits0References6

Positive Technologies•added 2025/07/09 12:0 a.m.•1 views

PT-2025-28911 · Jenkins · Jenkins Qmetry Test Management Plugin +1

Name of the Vulnerable Software and Affected Versions: Jenkins QMetry Test Management Plugin versions 1.13 and earlier Description: The Jenkins QMetry Test Management Plugin stores Qmetry Automation API Keys unencrypted in job config.xml files on the Jenkins controller. These keys are accessible ...

6.8CVSS5.9AI score0.00201EPSS

Exploits0References8

SUSE CVE•added 2023/02/15 4:8 a.m.•4 views

SUSE CVE-2019-16545

Jenkins QMetry for JIRA - Test Management Plugin transmits credentials in its configuration in plain text as part of job configuration forms, potentially resulting in their exposure...

6.5CVSS6.6AI score0.00541EPSS

Exploits0References3

Github Security Blog•added 2022/05/24 5:1 p.m.•23 views

Jenkins QMetry for JIRA Plugin shows plain text password in configuration form

Jenkins QMetry for JIRA - Test Management Plugin stores a credential as part of its post-build step configuration. While the password is stored encrypted on disk since QMetry for JIRA - Test Management Plugin 1.13, it is transmitted in plain text as part of the configuration form. This can result...

6.5CVSS6.2AI score0.00541EPSS

Exploits0References5Affected Software1

OSV•added 2022/05/24 5:1 p.m.•11 views

GHSA-793W-Q2H5-8H5J Jenkins QMetry for JIRA Plugin shows plain text password in configuration form

3.1CVSS6.3AI score0.00541EPSS

Exploits0References4

Prion•added 2019/11/21 3:15 p.m.•16 views

Design/Logic Flaw

Jenkins QMetry for JIRA - Test Management Plugin 1.12 and earlier stores credentials unencrypted in job config.xml files on the Jenkins master where they can be viewed by users with Extended Read permission, or access to the master file system...

4CVSS8.7AI score0.00833EPSS

Exploits0References2Affected Software1

Prion•added 2019/11/21 3:15 p.m.•14 views

Command injection

Jenkins QMetry for JIRA - Test Management Plugin transmits credentials in its configuration in plain text as part of job configuration forms, potentially resulting in their exposure...

4CVSS6.5AI score0.00541EPSS

Exploits0References2Affected Software1

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by