CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

13 matches found

EUVD•added 2025/10/03 8:7 p.m.•3 views

EUVD-2023-2105

Malicious code in bioql PyPI...

6.5CVSS6.6AI score0.00237EPSS

Exploits0References3

EUVD•added 2025/10/03 8:7 p.m.•1 views

EUVD-2023-1991

Malicious code in bioql PyPI...

8.8CVSS8.4AI score0.00491EPSS

Exploits0References3

RedhatCVE•added 2025/05/23 4:6 a.m.•6 views

CVE-2023-37958

A cross-site request forgery CSRF vulnerability in Jenkins Sumologic Publisher Plugin 2.2.1 and earlier allows attackers to connect to an attacker-specified URL...

8.8CVSS6.7AI score0.00491EPSS

Exploits0

Github Security Blog•added 2023/07/12 6:30 p.m.•16 views

Jenkins Sumologic Publisher Plugin missing permission check

Jenkins Sumologic Publisher Plugin 2.2.1 and earlier does not perform a permission check in a method implementing form validation. This allows attackers with Overall/Read permission to connect to an attacker-specified URL. Additionally, this form validation method does not require POST requests,...

6.5CVSS6.6AI score0.00237EPSS

Exploits0References4Affected Software1

OSV•added 2023/07/12 4:15 p.m.•1 views

CVE-2023-37959

A missing permission check in Jenkins Sumologic Publisher Plugin 2.2.1 and earlier allows attackers with Overall/Read permission to connect to an attacker-specified URL...

6.5CVSS5.8AI score

Exploits0References2

NVD•added 2023/07/12 4:15 p.m.•7 views

CVE-2023-37958

A cross-site request forgery CSRF vulnerability in Jenkins Sumologic Publisher Plugin 2.2.1 and earlier allows attackers to connect to an attacker-specified URL...

8.8CVSS0.00491EPSS

Exploits0References2

Prion•added 2023/07/12 4:15 p.m.•14 views

Cross site request forgery (csrf)

A cross-site request forgery CSRF vulnerability in Jenkins Sumologic Publisher Plugin 2.2.1 and earlier allows attackers to connect to an attacker-specified URL...

6.8CVSS8.7AI score0.00491EPSS

Exploits0References2Affected Software1

Vulnrichment•added 2023/07/12 3:52 p.m.•20 views

CVE-2023-37959

A missing permission check in Jenkins Sumologic Publisher Plugin 2.2.1 and earlier allows attackers with Overall/Read permission to connect to an attacker-specified URL...

6.6AI score0.00237EPSS

Exploits0References2

CVE•added 2023/07/12 3:52 p.m.•47 views

CVE-2023-37959

CVE-2023-37959 affects Jenkins Sumologic Publisher Plugin (versions 2.2.1 and earlier). The root cause is a missing permission check in a form-validation method, enabling attackers with Overall/Read permission to connect to an attacker-specified URL. Some sources additionally describe CSRF risk b...

6.5CVSS6.3AI score0.00237EPSS

Exploits0References2Affected Software1

CVE•added 2023/07/12 3:52 p.m.•39 views

CVE-2023-37958

Jenkins Sumologic Publisher Plugin ≤ 2.2.1 has a CSRF vulnerability: a method implementing form validation lacks a permission check, allowing attackers with Overall/Read to trigger a request to an attacker‑specified URL without POST requirements. Impact stated across multiple sources; no public e...

8.8CVSS8.7AI score0.00491EPSS

Exploits0References2Affected Software1

Vulnrichment•added 2023/07/12 3:52 p.m.•12 views

CVE-2023-37958

A cross-site request forgery CSRF vulnerability in Jenkins Sumologic Publisher Plugin 2.2.1 and earlier allows attackers to connect to an attacker-specified URL...

6.8AI score0.00491EPSS

Exploits0References2

CNNVD•added 2023/07/12 12:0 a.m.•1 views

Jenkins Plugin Sumologic Publisher 安全漏洞

Jenkins and Jenkins Plugin are both Jenkins open source products.Jenkins is a software application . An open source automation server Jenkins provides hundreds of plugins to support building, deploying, and automating any project.Jenkins Plugin is a software application. A security vulnerability...

6.5CVSS6.5AI score0.00237EPSS

Exploits0References3

CNNVD•added 2023/07/12 12:0 a.m.•2 views

Jenkins Plugin Sumologic Publisher 跨站请求伪造漏洞

8.8CVSS7.9AI score0.00491EPSS

Exploits0References3

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by