CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

8 matches found

EUVD•added 2025/10/03 8:7 p.m.•1 views

EUVD-2022-5024

Malicious code in bioql PyPI...

6.5CVSS6.5AI score0.00128EPSS

Exploits0References4

Github Security Blog•added 2022/05/13 1:17 a.m.•16 views

Jenkins Audit to Database Plugin stores credentials in plain text

Jenkins Audit to Database Plugin stores database credentials unencrypted in its global configuration file audit2db.xml on the Jenkins controller. These credentials can be viewed by users with access to the Jenkins controller file system...

8.8CVSS6.7AI score0.00078EPSS

Exploits0References5Affected Software1

CNVD•added 2019/10/14 12:0 a.m.•2 views

CloudBees Jenkins Audit to Database Plugin Trust Management Issue Vulnerability

CloudBees Jenkins Hudson Labs is the United States CloudBees company's set of Java-based development of continuous integration tools. The product is mainly used to monitor the continuous software version release/testing projects and some timed tasks . Audit to Database Plugin is used in which a...

8.8CVSS6.8AI score0.00078EPSS

Exploits0References1

CNVD•added 2019/08/23 12:0 a.m.•2 views

CloudBees Jenkins Audit to Database Plugin Authorization Issue Vulnerability

6.5CVSS6.9AI score0.00045EPSS

Exploits0References1

CNVD•added 2019/04/11 12:0 a.m.•1 views

CloudBees Jenkins Audit to Database plugin cross-site request forgery vulnerability

6.5CVSS6.8AI score0.00128EPSS

Exploits0References1

CVE•added 2019/04/04 3:38 p.m.•54 views

CVE-2019-1003076

Summary (CVE-2019-1003076) : A cross-site request forgery vulnerability in the Jenkins Audit to Database Plugin (DbAuditPublisherDescriptorImpl#doTestJdbcConnection) allows an attacker to initiate a connection to a server specified by the attacker. The issue is documented across multiple sources ...

6.5CVSS6.3AI score0.00128EPSS

Exploits0References3Affected Software1

Positive Technologies•added 2019/04/04 12:0 a.m.•3 views

PT-2019-11365 · Jenkins · Jenkins Audit To Database Plugin

Name of the Vulnerable Software and Affected Versions: Jenkins Audit to Database Plugin affected versions not specified Description: The issue concerns the storage of credentials in an unencrypted manner within the global configuration file. Specifically, database credentials are stored unencrypt...

8.8CVSS8.4AI score0.00078EPSS

Exploits0References6

Positive Technologies•added 2019/04/04 12:0 a.m.•4 views

PT-2019-11367 · Jenkins · Jenkins Audit To Database Plugin

Name of the Vulnerable Software and Affected Versions: Jenkins Audit to Database Plugin affected versions not specified Description: A missing permission check in the DbAuditPublisherDescriptorImpldoTestJdbcConnection form validation method allows attackers with Overall/Read permission to initiat...

6.5CVSS6.2AI score0.00045EPSS

Exploits0References5

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by