CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

14 matches found

OSV•added 2026/02/20 8:43 a.m.•6 views

BIT-JENKINS-2026-27100

Jenkins 2.550 and earlier, LTS 2.541.1 and earlier accepts Run Parameter values that refer to builds the user submitting the build does not have access to, allowing attackers with Item/Build and Item/Configure permission to obtain information about the existence of jobs, the existence of builds,...

4.3CVSS5.6AI score0.00333EPSS

Exploits0References2

OSV•added 2026/02/18 3:31 p.m.•3 views

GHSA-WFHP-QGM8-5P5C Jenkins has a build information disclosure vulnerability through Run Parameter

4.3CVSS7.2AI score0.00333EPSS

Exploits0References6

Snyk•added 2026/02/18 3:31 p.m.•6 views

Exposure of Sensitive System Information to an Unauthorized Control Sphere

Overview org.jenkins-ci.main:jenkins-core is an open source automation server. Affected versions of this package are vulnerable to Exposure of Sensitive System Information to an Unauthorized Control Sphere via the Run Parameter values. An attacker can access information about the existence of job...

5.3CVSS5.7AI score0.00333EPSS

Exploits0References2

Github Security Blog•added 2026/02/18 3:31 p.m.•7 views

Jenkins has a build information disclosure vulnerability through Run Parameter

4.3CVSS5.5AI score0.00333EPSS

Exploits0References6Affected Software1

NVD•added 2026/02/18 3:18 p.m.•5 views

CVE-2026-27100

4.3CVSS0.00333EPSS

Exploits0References1

OSV•added 2026/02/18 3:18 p.m.•4 views

CVE-2026-27100

4.3CVSS5.5AI score

Exploits0References1

AlpineLinux•added 2026/02/18 2:17 p.m.•5 views

CVE-2026-27100

4.3CVSS5.6AI score0.00333EPSS

Exploits0References1

Vulnrichment•added 2026/02/18 2:17 p.m.•4 views

CVE-2026-27100

5.5AI score0.00333EPSS

Exploits0References1

Cvelist•added 2026/02/18 2:17 p.m.•22 views

CVE-2026-27100

0.00333EPSS

Exploits0References1

FreeBSD•added 2026/02/18 12:0 a.m.•5 views

jenkins -- multiple vulnerabilities

Jenkins Security Advisory: Description High SECURITY-3669 / CVE-2026-27099 Stored XSS vulnerability in node offline cause description Medium SECURITY-3658 / CVE-2026-27100 Build information disclosure vulnerability through Run Parameter...

8CVSS5.4AI score0.00505EPSS

Exploits0References1

CNVD•added 2017/07/20 12:0 a.m.•3 views

Sitecore Cross-Site Scripting Vulnerability

Sitecore is an online marketing content management system CMS from Sitecore, Denmark. The system supports content editing, multiple languages, multi-site deployment, digital asset management and more. A cross-site scripting vulnerability exists in Sitecore version 8.2, which stems from the...

5.4CVSS5.3AI score0.00604EPSS

Exploits1References1

Zero Science Lab•added 2014/03/25 12:0 a.m.•17 views

Kemana Directory 1.5.6 (run param) Local File Inclusion Vulnerability

Summary Experience the ultimate directory script solution with Kemana. Create your own Yahoo or Dmoz easily with Kemana. Unique Kemana's features including: CMS engine based on our qEngine, multiple directories support, user friendly administration control panel, easy to use custom fields,...

5.8AI score

Exploits0

OSV•added 2014/03/11 7:37 p.m.•3 views

UBUNTU-CVE-2013-4433

Cross-site scripting XSS vulnerability in XHProf before 0.9.4 allows remote attackers to inject arbitrary web script or HTML via the run parameter...

4.3CVSS5.9AI score0.0118EPSS

Exploits0References2

Cvelist•added 2014/03/11 3:0 p.m.•23 views

CVE-2013-4433

Cross-site scripting XSS vulnerability in XHProf before 0.9.4 allows remote attackers to inject arbitrary web script or HTML via the run parameter...

5.7AI score0.0118EPSS

Exploits0References5