Lucene search
+L

7 matches found

EUVD
EUVD
added 2025/10/03 8:7 p.m.9 views

EUVD-2022-5637

Malicious code in bioql PyPI...

5.4CVSS5.7AI score0.00735EPSS
Exploits0References4
EUVD
EUVD
added 2025/10/03 8:7 p.m.5 views

EUVD-2022-5097

Malicious code in bioql PyPI...

8.5CVSS8.6AI score0.01145EPSS
Exploits0References5
SUSE CVE
SUSE CVE
added 2023/02/15 4:20 a.m.7 views

SUSE CVE-2018-1000146

An arbitrary code execution vulnerability exists in Liquibase Runner Plugin version 1.3.0 and older that allows an attacker with permission to configure jobs to load and execute arbitrary code on the Jenkins master JVM...

8.8CVSS9.2AI score0.01577EPSS
Exploits0References3
SUSE CVE
SUSE CVE
added 2023/02/15 4:19 a.m.1 views

SUSE CVE-2018-1999005

A cross-site scripting vulnerability exists in Jenkins 2.132 and earlier, 2.121.1 and earlier in BuildTimelineWidget.java, BuildTimelineWidget/control.jelly that allows attackers with Job/Configure permission to define JavaScript that would be executed in another user's browser when that other us...

5.4CVSS4.7AI score0.00894EPSS
Exploits0References3
OSV
OSV
added 2022/05/24 5:23 p.m.4 views

GHSA-GFHJ-524Q-GCRM Stored XSS vulnerability in Jenkins console links

Jenkins 2.244 and earlier, LTS 2.235.1 and earlier does not escape the href attribute of links to downstream jobs displayed in the build console page. This results in a stored cross-site scripting XSS vulnerability exploitable by users with Job/Configure permission. Jenkins 2.245, LTS 2.235.2...

8CVSS6AI score0.01032EPSS
Exploits0References5
UbuntuCve
UbuntuCve
added 2015/10/16 8:59 p.m.27 views

CVE-2015-1806

The combination filter Groovy script in Jenkins before 1.600 and LTS before 1.596.1 allows remote authenticated users with job configuration permission to gain privileges and execute arbitrary code on the master via unspecified vectors...

6.5CVSS7.6AI score0.02523EPSS
Exploits0References2
Positive Technologies
Positive Technologies
added 2014/10/16 12:0 a.m.3 views

PT-2014-5441 · Cloudbees +1 · Jenkins

Name of the Vulnerable Software and Affected Versions: Jenkins versions prior to 1.583 Jenkins LTS versions prior to 1.565.3 Description: The issue allows remote authenticated users with the Job/CONFIGURE permission to bypass intended restrictions. This can lead to the creation or destruction of...

6CVSS8.9AI score0.01384EPSS
Exploits0References8
Rows per page
Query Builder