CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

11 matches found

EUVD•added 2025/10/03 8:7 p.m.•5 views

EUVD-2022-0656

Malicious code in bioql PyPI...

5.4CVSS5.5AI score0.75742EPSS

Exploits0References5

EUVD•added 2025/10/03 8:7 p.m.•6 views

EUVD-2022-4693

Malicious code in bioql PyPI...

4.3CVSS5AI score0.00646EPSS

Exploits0References5

RedhatCVE•added 2025/05/22 3:18 p.m.•9 views

CVE-2020-2156

Jenkins DeployHub Plugin 8.0.14 and earlier transmits configured credentials in plain text as part of job configuration forms, potentially resulting in their exposure...

4.3CVSS6.8AI score0.0064EPSS

Exploits0

CNNVD•added 2023/12/13 12:0 a.m.•3 views

Jenkins PaaSLane Estimate Plugin Security Vulnerability

Jenkins and Jenkins Plugin are both Jenkins open source products.Jenkins is a software application . An open source automation server Jenkins provides hundreds of plugins to support building, deploying, and automating any project.Jenkins Plugin is a software application. A security vulnerability...

4.3CVSS6.9AI score0.00318EPSS

Exploits0References4

SUSE CVE•added 2023/02/15 4:8 a.m.•4 views

SUSE CVE-2019-16545

Jenkins QMetry for JIRA - Test Management Plugin transmits credentials in its configuration in plain text as part of job configuration forms, potentially resulting in their exposure...

6.5CVSS6.6AI score0.00541EPSS

Exploits0References3

Check Point Advisories•added 2022/11/24 12:0 a.m.•9 views

Jenkins Scriptler Plugin Cross-Site Scripting (CVE-2021-21667)

A stored cross-site scripting vulnerability exists in Jenkins Scriptler Plugin. This vulnerability is due to insufficient escaping of parameter names shown in job configuration forms...

3.5CVSS1.6AI score0.75742EPSS

Exploits0

Positive Technologies•added 2021/06/16 12:0 a.m.•4 views

PT-2021-14710 · Jenkins · Jenkins Scriptler Plugin +1

Name of the Vulnerable Software and Affected Versions: Jenkins Scriptler Plugin versions 3.2 and earlier Description: The issue results in a stored cross-site scripting XSS vulnerability. This is due to the plugin not escaping parameter names shown in job configuration forms. Attackers with...

5.4CVSS5.2AI score0.75742EPSS

Exploits0References6

NVD•added 2019/11/21 3:15 p.m.•19 views

CVE-2019-16545

Jenkins QMetry for JIRA - Test Management Plugin transmits credentials in its configuration in plain text as part of job configuration forms, potentially resulting in their exposure...

6.5CVSS6.6AI score0.00541EPSS

Exploits0References2

Positive Technologies•added 2019/10/01 12:0 a.m.•2 views

PT-2019-11829 · Sourcegear +1 · Jenkins Sourcegear Vault Plugin +1

Name of the Vulnerable Software and Affected Versions: Jenkins SourceGear Vault Plugin affected versions not specified Description: The Jenkins SourceGear Vault Plugin transmits configured credentials in plain text as part of job configuration forms, potentially resulting in their exposure. There...

7.5CVSS7.4AI score0.00887EPSS

Exploits0References5

NVD•added 2019/06/11 2:29 p.m.•24 views

CVE-2019-10336

A reflected cross site scripting vulnerability in Jenkins ElectricFlow Plugin 1.1.6 and earlier allowed attackers able to control the output of the ElectricFlow API to inject arbitrary HTML and JavaScript in job configuration forms containing post-build steps provided by this plugin...

6.1CVSS6AI score0.01375EPSS

Exploits0References3

Positive Technologies•added 2019/06/11 12:0 a.m.•3 views

PT-2019-11736 · Jenkins +1 · Jenkins Electricflow Plugin +2

Name of the Vulnerable Software and Affected Versions: Jenkins ElectricFlow Plugin version 1.1.6 and earlier CloudBees CD Plugin affected versions not specified Description: A reflected cross-site scripting issue allows attackers to inject arbitrary HTML and JavaScript into job configuration form...

6.1CVSS5.9AI score0.01375EPSS

Exploits0References8

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by