Lucene search
+L

8 matches found

RedhatCVE
RedhatCVE
added 2026/01/07 9:33 a.m.6 views

CVE-2019-16565

A cross-site request forgery vulnerability in Jenkins Team Concert Plugin 1.3.0 and earlier allows attackers to connect to an attacker-specified URL using attacker-specified credentials IDs obtained through another method, capturing credentials stored in Jenkins...

8.8CVSS6.5AI score0.0064EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2026/01/07 9:32 a.m.14 views

CVE-2019-16567

A missing permission check in Jenkins Team Concert Plugin 1.3.0 and earlier in form-related methods allowed users with Overall/Read access to enumerate credentials ID of credentials stored in Jenkins...

4.3CVSS6.4AI score0.00647EPSS
Exploits0References1
EUVD
EUVD
added 2025/10/03 8:7 p.m.5 views

EUVD-2022-3546

Malicious code in bioql PyPI...

6.5CVSS6.6AI score0.00798EPSS
Exploits0References4
EUVD
EUVD
added 2025/10/03 8:7 p.m.8 views

EUVD-2022-5582

Malicious code in bioql PyPI...

4.3CVSS5.1AI score0.00647EPSS
Exploits0References4
EUVD
EUVD
added 2025/10/03 8:7 p.m.6 views

EUVD-2023-1818

Malicious code in bioql PyPI...

4.3CVSS4.7AI score0.00497EPSS
Exploits0References3
RedhatCVE
RedhatCVE
added 2023/07/04 5:47 a.m.28 views

CVE-2023-3315

Missing permission checks in Jenkins Team Concert Plugin 2.4.1 and earlier allow attackers with Overall/Read permission to check for the existence of an attacker-specified file path on the Jenkins controller file system...

4.3CVSS6.7AI score0.00497EPSS
Exploits0References3
Vulnrichment
Vulnrichment
added 2023/06/19 8:10 p.m.9 views

CVE-2023-3315

Missing permission checks in Jenkins Team Concert Plugin 2.4.1 and earlier allow attackers with Overall/Read permission to check for the existence of an attacker-specified file path on the Jenkins controller file system...

4.4AI score0.00497EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2023/06/19 12:0 a.m.6 views

PT-2023-24190 · Jenkins · Jenkins Team Concert Plugin +1

Name of the Vulnerable Software and Affected Versions: Jenkins Team Concert Plugin versions 2.4.1 and earlier Description: The issue is related to missing permission checks in the Jenkins Team Concert Plugin, which allows attackers with Overall/Read permission to check for the existence of an...

4.3CVSS6.9AI score0.00497EPSS
Exploits0References5
Rows per page
Query Builder