Lucene search
K

10 matches found

EUVD
EUVD
added 2025/10/03 8:7 p.m.5 views

EUVD-2023-1544

Malicious code in bioql PyPI...

8.8CVSS8.4AI score0.0045EPSS
Exploits0References2
EUVD
EUVD
added 2025/10/03 8:7 p.m.7 views

EUVD-2023-1638

Malicious code in bioql PyPI...

4.3CVSS4.9AI score0.00425EPSS
Exploits0References2
RedhatCVE
RedhatCVE
added 2025/05/23 2:35 a.m.5 views

CVE-2023-32991

A cross-site request forgery CSRF vulnerability in Jenkins SAML Single Sign OnSSO Plugin 2.0.2 and earlier allows attackers to send an HTTP request to an attacker-specified URL and parse the response as XML, or parse a local file on the Jenkins controller as XML...

8.8CVSS6.5AI score0.00681EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2023/07/12 3:52 p.m.12 views

CVE-2023-37945

A missing permission check in Jenkins SAML Single Sign OnSSO Plugin 2.1.0 through 2.3.0 both inclusive allows attackers with Overall/Read permission to download a string representation of the current security realm...

6.6AI score0.00371EPSS
Exploits0References2
NVD
NVD
added 2023/05/16 5:15 p.m.21 views

CVE-2023-32992

Missing permission checks in Jenkins SAML Single Sign OnSSO Plugin 2.0.2 and earlier allow attackers with Overall/Read permission to send an HTTP request to an attacker-specified URL and parse the response as XML, or parse a local file on the Jenkins controller as XML...

8.8CVSS8.4AI score0.00832EPSS
Exploits0References1
Prion
Prion
added 2023/05/16 5:15 p.m.27 views

Cross site request forgery (csrf)

A cross-site request forgery CSRF vulnerability in Jenkins SAML Single Sign OnSSO Plugin 2.0.0 and earlier allows attackers to send an HTTP POST request with JSON body containing attacker-specified content, to miniOrange's API for sending emails...

6.8CVSS8.7AI score0.0045EPSS
Exploits0References1Affected Software1
Cvelist
Cvelist
added 2023/05/16 4:0 p.m.26 views

CVE-2023-32996

A missing permission check in Jenkins SAML Single Sign OnSSO Plugin 2.0.0 and earlier allows attackers with Overall/Read permission to send an HTTP POST request with JSON body containing attacker-specified content, to miniOrange's API for sending emails...

4.8AI score0.00425EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2023/05/16 4:0 p.m.13 views

CVE-2023-32996

A missing permission check in Jenkins SAML Single Sign OnSSO Plugin 2.0.0 and earlier allows attackers with Overall/Read permission to send an HTTP POST request with JSON body containing attacker-specified content, to miniOrange's API for sending emails...

4.5AI score0.00425EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2023/05/16 4:0 p.m.8 views

CVE-2023-32995

A cross-site request forgery CSRF vulnerability in Jenkins SAML Single Sign OnSSO Plugin 2.0.0 and earlier allows attackers to send an HTTP POST request with JSON body containing attacker-specified content, to miniOrange's API for sending emails...

7.1AI score0.0045EPSS
Exploits0References1
CNNVD
CNNVD
added 2023/05/16 12:0 a.m.4 views

Jenkins Plugin SAML Single Sign On(SSO) 安全漏洞

Jenkins and Jenkins Plugin are both Jenkins open source products.Jenkins is a software application. An open source automation server Jenkins provides hundreds of plugins to support building, deploying, and automating any project.Jenkins Plugin is a software application. A security vulnerability...

4.3CVSS5.2AI score0.00425EPSS
Exploits0References4
Rows per page
Query Builder