EUVD-2022-2895

Malicious code in bioql PyPI...

CVE-2022-28151

A missing permission check in Jenkins Job and Node ownership Plugin 0.13.0 and earlier allows attackers with Item/Read permission to change the owners and item-specific permissions of a job...

CVE-2022-28150

A cross-site request forgery CSRF vulnerability in Jenkins Job and Node ownership Plugin 0.13.0 and earlier allows attackers to change the owners and item-specific permissions of a job...

CVE-2022-28152

A cross-site request forgery CSRF vulnerability in Jenkins Job and Node ownership Plugin 0.13.0 and earlier allows attackers to restore the default ownership of a job...

CVE-2022-28152

The CVE-2022-28152 entry concerns a CSRF vulnerability in Jenkins Job and Node ownership Plugin (versions 0.13.0 and earlier) that allows an attacker to restore the default ownership of a job. This is documented across multiple sources (OSV, CNVD/CNNVD, CVE listings) confirming the affected compo...

Jenkins Job and Node ownership Plugin 访问控制错误漏洞

Jenkins is a Jenkins open source application. An open source automation server Jenkins provides hundreds of plugins to support building, deploying, and automating any project.Jenkins Job and Node ownership Plugin 0.13.0 and earlier versions are vulnerable to an authorization issue that stems from...

PT-2022-18851 · Jenkins · Jenkins Job/Node Ownership Plugin +1

Name of the Vulnerable Software and Affected Versions: Jenkins Job and Node ownership Plugin versions 0.13.0 and earlier Description: A cross-site request forgery CSRF issue allows attackers to restore the default ownership of a job. This can be exploited by attackers to potentially gain...

PT-2022-18850 · Jenkins · Jenkins Job/Node Ownership Plugin +1

Name of the Vulnerable Software and Affected Versions: Jenkins Job and Node ownership Plugin versions 0.13.0 and earlier Description: A missing permission check in the plugin allows attackers with Item/Read permission to change the owners and item-specific permissions of a job. Recommendations: F...

Jenkins Job and Node ownership Plugin 跨站脚本漏洞

Jenkins is an application. An open source automation server Jenkins provides hundreds of plugins to support building, deploying and automating any project.Jenkins Job and Node ownership Plugin 0.13.0 and earlier versions have a cross-site scripting vulnerability that stems from unescaped secondar...

Jenkins Job and Node Ownership Plugin Design Vulnerability

Jenkins is an open source software project , is based on Java development of a continuous integration tool . A security vulnerability exists in the OwnershipDescription.java, JobOwnerJobProperty.java, and OwnerNodeProperty.java files in the Jenkins Job and Node Ownership Plugin 0.11.0 and earlier...