Lucene search
K

8 matches found

EUVD
EUVD
added 2025/10/03 8:7 p.m.9 views

EUVD-2022-2134

Malicious code in bioql PyPI...

5.4CVSS5.7AI score0.00673EPSS
Exploits0References4
RedhatCVE
RedhatCVE
added 2025/05/22 2:52 a.m.21 views

CVE-2018-1000177

A cross-site scripting vulnerability exists in Jenkins S3 Plugin 0.10.12 and older in src/main/resources/hudson/plugins/s3/S3ArtifactsProjectAction/jobMain.jelly that allows attackers able to control file names of uploaded files to define file names containing JavaScript that would be executed in...

5.4CVSS5.9AI score0.00673EPSS
Exploits0References1
Github Security Blog
Github Security Blog
added 2022/05/14 3:18 a.m.20 views

Stored XSS vulnerability in Jenkins S3 Publisher Plugin

A cross-site scripting vulnerability exists in Jenkins S3 Plugin 0.10.12 and older in src/main/resources/hudson/plugins/s3/S3ArtifactsProjectAction/jobMain.jelly that allows attackers able to control file names of uploaded files to define file names containing JavaScript that would be executed in...

5.4CVSS5.9AI score0.00673EPSS
Exploits0References3Affected Software1
Cvelist
Cvelist
added 2021/05/11 2:15 p.m.30 views

CVE-2021-21651

Jenkins S3 publisher Plugin 0.11.6 and earlier does not perform a permission check in an HTTP endpoint, allowing attackers with Overall/Read permission to obtain the list of configured profiles...

5AI score0.00733EPSS
Exploits0References1
Prion
Prion
added 2018/05/08 3:29 p.m.14 views

Cross site scripting

A cross-site scripting vulnerability exists in Jenkins S3 Plugin 0.10.12 and older in src/main/resources/hudson/plugins/s3/S3ArtifactsProjectAction/jobMain.jelly that allows attackers able to control file names of uploaded files to define file names containing JavaScript that would be executed in...

3.5CVSS5.1AI score0.00673EPSS
Exploits0References1Affected Software1
NVD
NVD
added 2018/05/08 3:29 p.m.26 views

CVE-2018-1000177

A cross-site scripting vulnerability exists in Jenkins S3 Plugin 0.10.12 and older in src/main/resources/hudson/plugins/s3/S3ArtifactsProjectAction/jobMain.jelly that allows attackers able to control file names of uploaded files to define file names containing JavaScript that would be executed in...

5.4CVSS5.2AI score0.00673EPSS
Exploits0References1
OSV
OSV
added 2018/05/08 3:29 p.m.7 views

CVE-2018-1000177

A cross-site scripting vulnerability exists in Jenkins S3 Plugin 0.10.12 and older in src/main/resources/hudson/plugins/s3/S3ArtifactsProjectAction/jobMain.jelly that allows attackers able to control file names of uploaded files to define file names containing JavaScript that would be executed in...

5.4CVSS5.7AI score0.00673EPSS
Exploits0References1
Cvelist
Cvelist
added 2018/05/08 3:0 p.m.32 views

CVE-2018-1000177

A cross-site scripting vulnerability exists in Jenkins S3 Plugin 0.10.12 and older in src/main/resources/hudson/plugins/s3/S3ArtifactsProjectAction/jobMain.jelly that allows attackers able to control file names of uploaded files to define file names containing JavaScript that would be executed in...

5.2AI score0.00673EPSS
Exploits0References1
Rows per page
Query Builder