Lucene search
K

48 matches found

Cvelist
Cvelist
added 2022/02/15 4:11 p.m.24 views

CVE-2022-25191

Jenkins Agent Server Parameter Plugin 1.0 and earlier does not escape parameter names of agent server parameters, resulting in a stored cross-site scripting XSS vulnerability exploitable by attackers with Item/Configure permission...

6AI score0.00598EPSS
Exploits0References1
CVE
CVE
added 2022/02/15 4:11 p.m.181 views

CVE-2022-25191

CVE-2022-25191 : Jenkins Agent Server Parameter Plugin 1.0 and earlier fails to escape parameter names for agent server parameters, causing a stored XSS vulnerability exploitable by attackers with Item/Configure permission. The issue is mitigated by upgrading to Agent Server Parameter Plugin 1.1,...

5.4CVSS5.4AI score0.00598EPSS
Exploits0References1Affected Software1
CNNVD
CNNVD
added 2022/02/15 12:0 a.m.7 views

Jenkins 插件 跨站脚本漏洞

Jenkins is a Jenkins open source application. An open source automation server Jenkins provides hundreds of plugins to support building, deploying, and automating any project.Jenkins Agent Server Parameter Plugin 1.0 and earlier versions have a cross-site scripting vulnerability that stems from n...

5.4CVSS5.3AI score0.00598EPSS
Exploits0References5
Positive Technologies
Positive Technologies
added 2022/02/15 12:0 a.m.3 views

PT-2022-17131 · Jenkins · Jenkins Agent Server Parameter Plugin +1

Name of the Vulnerable Software and Affected Versions: Jenkins Agent Server Parameter Plugin versions 1.0 and earlier Description: The issue results in a stored cross-site scripting XSS vulnerability. This occurs because the plugin does not escape parameter names of agent server parameters...

8CVSS5.1AI score0.00598EPSS
Exploits0References6
CNVD
CNVD
added 2021/04/17 12:0 a.m.2 views

Arbitrary File Read Vulnerability in MAS Mobile Proxy Server

Mobile Agent Server MAS is the abbreviation of Mobile Agent Server, is to assist the enterprise original business system to realize the wireless application of the access tool to achieve MAS access to the enterprise original business system can be convenient to realize the wireless application,...

7.1AI score
Exploits0
CNVD
CNVD
added 2020/05/06 12:0 a.m.3 views

BMC Control-M/Agent Command Injection Vulnerability (CNVD-2020-26845)

Control-M is one of BMC's most important automation control products, and is the world's leading integrated business scheduling solution for cross-platform and cross-application job scheduling. A security vulnerability exists in the communication between BMC Control-M/Agent and Control-M/Server...

8.8CVSS7.1AI score0.01815EPSS
Exploits0References1
CVE
CVE
added 2013/05/01 10:0 a.m.68 views

CVE-2013-0141

Summary (CVE-2013-0141): A directory traversal vulnerability in McAfee ePolicy Orchestrator (ePO) allows a remote attacker to upload arbitrary files via a crafted request over the Agent-Server communication channel, demonstrated by writing to the Software/ directory. It affects ePO versions prior...

4.3CVSS6.7AI score0.01116EPSS
Exploits4References4Affected Software1
securityvulns
securityvulns
added 2008/10/06 12:0 a.m.31 views

Trend Micro OfficeScan directory traversal

Directory traversal in update agent server part...

5CVSS3.1AI score0.2014EPSS
Exploits2References1
Rows per page
Query Builder