11 matches found
EUVD-2022-4113
Malicious code in bioql PyPI...
EUVD-2022-5694
Malicious code in bioql PyPI...
CVE-2020-2098
A cross-site request forgery vulnerability in Jenkins Sounds Plugin 0.5 and earlier allows attacker to execute arbitrary OS commands as the OS user account running Jenkins...
CVE-2020-2097
Jenkins Sounds Plugin 0.5 and earlier does not perform permission checks in URLs performing form validation, allowing attackers with Overall/Read access to execute arbitrary OS commands as the OS user account running Jenkins...
CVE-2020-2098
A cross-site request forgery vulnerability in Jenkins Sounds Plugin 0.5 and earlier allows attacker to execute arbitrary OS commands as the OS user account running Jenkins...
CVE-2020-2098
A cross-site request forgery vulnerability in Jenkins Sounds Plugin 0.5 and earlier allows attacker to execute arbitrary OS commands as the OS user account running Jenkins...
Input validation
Jenkins Sounds Plugin 0.5 and earlier does not perform permission checks in URLs performing form validation, allowing attackers with Overall/Read access to execute arbitrary OS commands as the OS user account running Jenkins...
CVE-2020-2098
A cross-site request forgery vulnerability in Jenkins Sounds Plugin 0.5 and earlier allows attacker to execute arbitrary OS commands as the OS user account running Jenkins...
CVE-2020-2097
Jenkins Sounds Plugin 0.5 and earlier does not perform permission checks in URLs performing form validation, allowing attackers with Overall/Read access to execute arbitrary OS commands as the OS user account running Jenkins...
PT-2020-15304 · Jenkins · Jenkins Sounds Plugin +1
Name of the Vulnerable Software and Affected Versions: Jenkins Sounds Plugin version 0.5 and earlier Description: A cross-site request forgery issue allows an attacker to execute arbitrary OS commands as the OS user account running Jenkins. Recommendations: For Jenkins Sounds Plugin version 0.5 a...
PT-2020-15303 · Jenkins · Jenkins Sounds Plugin +1
Name of the Vulnerable Software and Affected Versions: Jenkins Sounds Plugin version 0.5 and earlier Description: The issue allows attackers with Overall/Read access to execute arbitrary OS commands as the OS user account running Jenkins, due to a lack of permission checks in URLs performing form...