EUVD-2022-51122

Malicious code in bioql PyPI...

EUVD-2022-4427

Malicious code in bioql PyPI...

EUVD-2022-5191

Malicious code in bioql PyPI...

EUVD-2025-6087

Malicious code in bioql PyPI...

CVE-2022-48426

In JetBrains TeamCity before 2022.10.3 stored XSS in Perforce connection settings was possible...

CVE-2022-40979

In JetBrains TeamCity before 2022.04.4 environmental variables of "password" type could be logged when using custom Perforce executable...

CVE-2021-21654

Jenkins P4 Plugin 1.11.4 and earlier does not perform permission checks in multiple HTTP endpoints, allowing attackers with Overall/Read permission to connect to an attacker-specified Perforce server using attacker-specified username and password...

CVE-2021-21655

A cross-site request forgery CSRF vulnerability in Jenkins P4 Plugin 1.11.4 and earlier allows attackers to connect to an attacker-specified Perforce server using attacker-specified username and password...

CVE-2020-2141

A cross-site request forgery vulnerability in Jenkins P4 Plugin 1.10.10 and earlier allows attackers to trigger builds or add a labels in Perforce...

CVE-2013-1410

Perforce P4web 2011.1 and 2012.1 has multiple XSS vulnerabilities...

CVE-2018-1000147

An exposure of sensitive information vulnerability exists in Jenkins Perforce Plugin version 1.3.36 and older in PerforcePasswordEncryptor.java that allows attackers with insufficient permission to obtain Perforce passwords configured in jobs to obtain them...

CVE-2010-0930

The Perforce service p4s.exe in Perforce Server 2008.1 allows remote attackers to cause a denial of service infinite loop via crafted data that includes a byte sequence of 0xdc, 0xff, 0xff, and 0xff immediately before the client protocol version number...

CVE-2010-0931

The Perforce service p4s.exe in Perforce Server 2008.1 allows remote attackers to cause a denial of service daemon crash via crafted data, possibly involving a large sndbuf value...

CVE-2010-0929

The Perforce service p4s.exe in Perforce Server 2008.1 allows remote attackers to cause a denial of service daemon crash via crafted data beginning with a byte sequence of 0x4c, 0xb3, 0xff, 0xff, and 0xff...

Perforce ALM 安全漏洞

Perforce ALM Helix ALM is an application lifecycle management software from Perforce. A security vulnerability exists in Perforce ALM versions prior to 2025.1 that stems from a different error response being returned during authentication, which could lead to username enumeration...

CVE-2025-1714

Lack of Rate Limiting in Sign-up workflow in Perforce Gliffy prior to version 4.14.0-7 on Gliffy online allows attacker to enumerate valid user emails and potentially DOS the server...

CVE-2025-1714 Username Enumeration in Gliffy

Lack of Rate Limiting in Sign-up workflow in Perforce Gliffy prior to version 4.14.0-7 on Gliffy online allows attacker to enumerate valid user emails and potentially DOS the server...

CVE-2025-1714

CVE-2025-1714 concerns Perforce Gliffy Online: lack of rate limiting in the sign-up workflow before version 4.14.0-7 enables an attacker to enumerate valid user emails and potentially trigger denial-of-service. The Red Hat and CVE feeds corroborate the same description. Impact is consistent with ...

CVE-2025-1714 Username Enumeration in Gliffy

Lack of Rate Limiting in Sign-up workflow in Perforce Gliffy prior to version 4.14.0-7 on Gliffy online allows attacker to enumerate valid user emails and potentially DOS the server...

Perforce Gliffy 安全漏洞

Perforce Gliffy is a Perforce software for charting via HTML5 cloud-based applications. A security vulnerability exists in Perforce Gliffy versions prior to 4.14.0-7, which stems from a lack of rate limiting in the registration process and could lead to user mailbox enumeration and denial of...