Lucene search
K

13 matches found

EUVD
EUVD
added 2025/10/03 8:7 p.m.6 views

EUVD-2022-5840

Malicious code in bioql PyPI...

7.1CVSS6.9AI score0.00877EPSS
Exploits0References5
EUVD
EUVD
added 2025/10/03 8:7 p.m.5 views

EUVD-2022-3383

Malicious code in bioql PyPI...

5.4CVSS5.6AI score0.00753EPSS
Exploits0References5
RedhatCVE
RedhatCVE
added 2025/05/22 3:53 p.m.10 views

CVE-2020-2245

Jenkins Valgrind Plugin 0.28 and earlier does not configure its XML parser to prevent XML external entity XXE attacks...

7.1CVSS6.7AI score0.00877EPSS
Exploits0
RedhatCVE
RedhatCVE
added 2025/05/22 3:20 p.m.10 views

CVE-2020-2246

Jenkins Valgrind Plugin 0.28 and earlier does not escape content in Valgrind XML reports, resulting in a stored cross-site scripting XSS vulnerability exploitable by attackers able to control Valgrind XML report contents...

5.4CVSS5.5AI score0.00753EPSS
Exploits0
SUSE CVE
SUSE CVE
added 2023/02/15 4:4 a.m.5 views

SUSE CVE-2020-2245

Jenkins Valgrind Plugin 0.28 and earlier does not configure its XML parser to prevent XML external entity XXE attacks...

7.1CVSS7AI score0.00877EPSS
Exploits0References3
SUSE CVE
SUSE CVE
added 2023/02/15 4:4 a.m.4 views

SUSE CVE-2020-2246

Jenkins Valgrind Plugin 0.28 and earlier does not escape content in Valgrind XML reports, resulting in a stored cross-site scripting XSS vulnerability exploitable by attackers able to control Valgrind XML report contents...

5.4CVSS5AI score0.00753EPSS
Exploits0References3
CNVD
CNVD
added 2020/09/02 12:0 a.m.5 views

CloudBees Jenkins XSS Vulnerability

CloudBees Jenkins Hudson Labs is a set of Java-based continuous integration tools from CloudBees, Inc. The product is mainly used to monitor the continuous software version of the release/test project and some timed execution of the task . LTS is a long-term support for CloudBeesJenkins version...

5.4CVSS6.6AI score0.00753EPSS
Exploits0References1
NVD
NVD
added 2020/09/01 2:15 p.m.13 views

CVE-2020-2245

Jenkins Valgrind Plugin 0.28 and earlier does not configure its XML parser to prevent XML external entity XXE attacks...

7.1CVSS6.9AI score0.00877EPSS
Exploits0References2
NVD
NVD
added 2020/09/01 2:15 p.m.14 views

CVE-2020-2246

Jenkins Valgrind Plugin 0.28 and earlier does not escape content in Valgrind XML reports, resulting in a stored cross-site scripting XSS vulnerability exploitable by attackers able to control Valgrind XML report contents...

5.4CVSS5.3AI score0.00753EPSS
Exploits0References2
Prion
Prion
added 2020/09/01 2:15 p.m.16 views

Xxe

Jenkins Valgrind Plugin 0.28 and earlier does not configure its XML parser to prevent XML external entity XXE attacks...

5.5CVSS6.8AI score0.00877EPSS
Exploits0References2Affected Software1
Prion
Prion
added 2020/09/01 2:15 p.m.11 views

Cross site scripting

Jenkins Valgrind Plugin 0.28 and earlier does not escape content in Valgrind XML reports, resulting in a stored cross-site scripting XSS vulnerability exploitable by attackers able to control Valgrind XML report contents...

3.5CVSS5.3AI score0.00753EPSS
Exploits0References2Affected Software1
Cvelist
Cvelist
added 2020/09/01 1:50 p.m.12 views

CVE-2020-2246

Jenkins Valgrind Plugin 0.28 and earlier does not escape content in Valgrind XML reports, resulting in a stored cross-site scripting XSS vulnerability exploitable by attackers able to control Valgrind XML report contents...

5.3AI score0.00753EPSS
Exploits0References2
Positive Technologies
Positive Technologies
added 2020/09/01 12:0 a.m.5 views

PT-2020-15466 · Jenkins · Jenkins Valgrind Plugin +1

Name of the Vulnerable Software and Affected Versions: Jenkins Valgrind Plugin versions 0.28 and earlier Description: The issue concerns the configuration of the XML parser in the Jenkins Valgrind Plugin, which does not prevent XML external entity XXE attacks. This allows a user who can control t...

7.1CVSS6.8AI score0.00877EPSS
Exploits0References6
Rows per page
Query Builder