Lucene search
K

24 matches found

EUVD
EUVD
added 2025/10/07 12:30 a.m.4 views

EUVD-2016-5953

Malware in sbrugna...

7.5CVSS7.5AI score0.03005EPSS
Exploits0References5
EUVD
EUVD
added 2025/10/03 8:7 p.m.6 views

EUVD-2025-13312

Malicious code in bioql PyPI...

6.1CVSS7AI score0.00155EPSS
Exploits0References3
EUVD
EUVD
added 2025/10/03 8:7 p.m.5 views

EUVD-2023-2410

Malicious code in bioql PyPI...

5.4CVSS5.6AI score0.00542EPSS
Exploits0References3
RedhatCVE
RedhatCVE
added 2025/05/23 4:18 a.m.8 views

CVE-2023-41940

Jenkins TAP Plugin 2.3 and earlier does not escape TAP file contents, resulting in a stored cross-site scripting XSS vulnerability exploitable by attackers able to control TAP file contents...

5.4CVSS5.4AI score0.00542EPSS
Exploits0
NVD
NVD
added 2025/05/03 3:15 a.m.17 views

CVE-2025-4198

The Alink Tap plugin for WordPress is vulnerable to Cross-Site Request Forgery in all versions up to, and including, 1.3.1. This is due to missing or incorrect nonce validation on the 'alink-tap' page. This makes it possible for unauthenticated attackers to update settings and inject malicious we...

6.1CVSS0.00155EPSS
Exploits0References3
CVE
CVE
added 2025/05/03 1:43 a.m.62 views

CVE-2025-4198

CVE-2025-4198 – Alink Tap (WordPress) CSRF to Stored XSS . Affected: Alink Tap plugin for WordPress versions up to and including 1.3.1. Root cause: missing/incorrect nonce validation on the alink-tap page enables Cross-Site Request Forgery. Impact (per sources): unauthenticated attackers can upda...

6.1CVSS6AI score0.00155EPSS
Exploits0References3
Cvelist
Cvelist
added 2025/05/03 1:43 a.m.19 views

CVE-2025-4198 Alink Tap <= 1.3.1 - Cross-Site Request Forgery to Stored Cross-Site Scripting

The Alink Tap plugin for WordPress is vulnerable to Cross-Site Request Forgery in all versions up to, and including, 1.3.1. This is due to missing or incorrect nonce validation on the 'alink-tap' page. This makes it possible for unauthenticated attackers to update settings and inject malicious we...

6.1CVSS0.00155EPSS
Exploits0References3
Vulnrichment
Vulnrichment
added 2025/05/03 1:43 a.m.6 views

CVE-2025-4198 Alink Tap <= 1.3.1 - Cross-Site Request Forgery to Stored Cross-Site Scripting

The Alink Tap plugin for WordPress is vulnerable to Cross-Site Request Forgery in all versions up to, and including, 1.3.1. This is due to missing or incorrect nonce validation on the 'alink-tap' page. This makes it possible for unauthenticated attackers to update settings and inject malicious we...

6.1CVSS6.5AI score0.00155EPSS
Exploits0References3
Positive Technologies
Positive Technologies
added 2025/05/03 12:0 a.m.6 views

PT-2025-18934 · WordPress · Alink Tap

Name of the Vulnerable Software and Affected Versions: Alink Tap plugin for WordPress versions up to, and including, 1.3.1 Description: The issue is related to Cross-Site Request Forgery due to missing or incorrect nonce validation on the 'alink-tap' page. This allows unauthenticated attackers to...

6.1CVSS6.6AI score0.00155EPSS
Exploits0References8
OSV
OSV
added 2023/09/06 3:30 p.m.19 views

GHSA-3VCR-579J-4X48 Stored XSS vulnerability in Jenkins TAP Plugin

Jenkins TAP Plugin 2.3 and earlier does not escape TAP file contents, resulting in a stored cross-site scripting XSS vulnerability exploitable by attackers able to control TAP file contents...

5.4CVSS5.4AI score0.00542EPSS
Exploits0References3
Github Security Blog
Github Security Blog
added 2023/09/06 3:30 p.m.28 views

Stored XSS vulnerability in Jenkins TAP Plugin

Jenkins TAP Plugin 2.3 and earlier does not escape TAP file contents, resulting in a stored cross-site scripting XSS vulnerability exploitable by attackers able to control TAP file contents...

5.4CVSS5.5AI score0.00542EPSS
Exploits0References4Affected Software1
NVD
NVD
added 2023/09/06 1:15 p.m.13 views

CVE-2023-41940

Jenkins TAP Plugin 2.3 and earlier does not escape TAP file contents, resulting in a stored cross-site scripting XSS vulnerability exploitable by attackers able to control TAP file contents...

5.4CVSS5.8AI score0.00542EPSS
Exploits0References2
OSV
OSV
added 2023/09/06 1:15 p.m.12 views

CVE-2023-41940

Jenkins TAP Plugin 2.3 and earlier does not escape TAP file contents, resulting in a stored cross-site scripting XSS vulnerability exploitable by attackers able to control TAP file contents...

5.4CVSS5.6AI score
Exploits0References2
Prion
Prion
added 2023/09/06 1:15 p.m.17 views

Cross site scripting

Jenkins TAP Plugin 2.3 and earlier does not escape TAP file contents, resulting in a stored cross-site scripting XSS vulnerability exploitable by attackers able to control TAP file contents...

4.9CVSS5.3AI score0.00542EPSS
Exploits0References2Affected Software1
Vulnrichment
Vulnrichment
added 2023/09/06 12:8 p.m.12 views

CVE-2023-41940

Jenkins TAP Plugin 2.3 and earlier does not escape TAP file contents, resulting in a stored cross-site scripting XSS vulnerability exploitable by attackers able to control TAP file contents...

5.4AI score0.00542EPSS
Exploits0References2
Cvelist
Cvelist
added 2023/09/06 12:8 p.m.17 views

CVE-2023-41940

Jenkins TAP Plugin 2.3 and earlier does not escape TAP file contents, resulting in a stored cross-site scripting XSS vulnerability exploitable by attackers able to control TAP file contents...

5.7AI score0.00542EPSS
Exploits0References2
CVE
CVE
added 2023/09/06 12:8 p.m.126 views

CVE-2023-41940

CVE-2023-41940 affects Jenkins TAP Plugin up to version 2.3. The vulnerability arises because TAP file contents are not escaped, allowing stored cross-site scripting (XSS) when an attacker can control the TAP content. The issue is explicitly described as a stored XSS in the TAP Plugin. Multiple c...

5.4CVSS5.2AI score0.00542EPSS
Exploits0References2Affected Software1
CNNVD
CNNVD
added 2023/09/06 12:0 a.m.3 views

Jenkins Plugin TAP Cross-Site Scripting Vulnerability

Jenkins and Jenkins Plugin are both Jenkins open source products.Jenkins is a software application . An open source automation server Jenkins provides hundreds of plugins to support building, deploying and automating any project.Jenkins Plugin is a software application. A security vulnerability...

5.4CVSS5.8AI score0.00542EPSS
Exploits0References4
OSV
OSV
added 2022/05/13 1:30 a.m.4 views

GHSA-24JC-W55J-5P83 Jenkins TAP Plugin allows Path Traversal

Directory traversal vulnerability in the TAP plugin before 1.25 in Jenkins allows remote attackers to read arbitrary files via an unspecified parameter...

7.5CVSS7.6AI score0.03005EPSS
Exploits0References4
Github Security Blog
Github Security Blog
added 2022/05/13 1:30 a.m.10 views

Jenkins TAP Plugin allows Path Traversal

Directory traversal vulnerability in the TAP plugin before 1.25 in Jenkins allows remote attackers to read arbitrary files via an unspecified parameter...

7.5CVSS7AI score0.03005EPSS
Exploits0References4Affected Software1
Rows per page
Query Builder