Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

8 matches found

EUVD
EUVDadded 2026/06/04 1:26 p.m.6 views

EUVD-2026-34263

An open redirect vulnerability existed in MISP UsersController::routeafterlogin because the value stored in the preloginrequestedurl session key was used as the post-login redirect destination without sufficiently enforcing that it was a local application path. An unauthenticated remote attacker...

5.1CVSS5.8AI score0.00223EPSS
Exploits0References1
Vulnrichment
Vulnrichmentadded 2025/10/29 1:29 p.m.1 views

CVE-2025-64139

A missing permission check in Jenkins Start Windocks Containers Plugin 1.4 and earlier allows attackers with Overall/Read permission to connect to an attacker-specified URL...

6.3AI score0.00208EPSS
Exploits0References1
OSV
OSVadded 2025/09/03 3:15 p.m.5 views

CVE-2025-58460

A missing permission check in Jenkins OpenTelemetry Plugin 3.1543.v8446b92bcd64 and earlier allows attackers with Overall/Read permission to connect to an attacker-specified URL using attacker-specified credentials IDs obtained through another method, capturing credentials stored in Jenkins...

4.2CVSS6.5AI score
Exploits0References2
CNNVD
CNNVDadded 2023/12/13 12:0 a.m.3 views

Jenkins Nexus Platform Plugin Security Vulnerability

Jenkins and Jenkins Plugin are both Jenkins open source products.Jenkins is a software application . An open source automation server Jenkins provides hundreds of plugins to support building, deploying, and automating any project.Jenkins Plugin is a software application. A security vulnerability...

8.8CVSS6.7AI score0.00447EPSS
Exploits0References4
OSV
OSVadded 2023/06/14 1:15 p.m.4 views

CVE-2023-35148

A cross-site request forgery CSRF vulnerability in Jenkins Digital.ai App Management Publisher Plugin 2.6 and earlier allows attackers to connect to an attacker-specified URL, capturing credentials stored in Jenkins...

6.5CVSS6.3AI score0.00452EPSS
Exploits0References2
ATTACKERKB
ATTACKERKBadded 2022/06/23 5:15 p.m.4 views

CVE-2022-34210

A missing permission check in Jenkins ThreadFix Plugin 1.5.4 and earlier allows attackers with Overall/Read permission to connect to an attacker-specified URL...

6.5CVSS6.5AI score0.0057EPSS
Exploits0References2
ATTACKERKB
ATTACKERKBadded 2022/06/23 5:15 p.m.3 views

CVE-2022-34208

A missing permission check in Jenkins Beaker builder Plugin 1.10 and earlier allows attackers with Overall/Read permission to connect to an attacker-specified URL...

4.3CVSS6.2AI score0.00553EPSS
Exploits0References2
Positive Technologies
Positive Technologiesadded 2020/10/13 12:0 a.m.2 views

PT-2020-4383 · Microsoft · Exchange Server

Name of the Vulnerable Software and Affected Versions: Microsoft Exchange Server affected versions not specified Description: The issue is related to an information disclosure vulnerability in how Microsoft Exchange validates tokens when handling certain messages. This could allow a remote attack...

7.1CVSS7.8AI score0.02528EPSS
Exploits0References9
Rows per page
Query Builder