Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

9 matches found

EUVD
EUVDadded 2025/10/03 8:7 p.m.4 views

EUVD-2022-4693

Malicious code in bioql PyPI...

4.3CVSS5AI score0.00024EPSS
Exploits0References5
RedhatCVE
RedhatCVEadded 2025/05/22 3:49 p.m.7 views

CVE-2020-2153

Jenkins Backlog Plugin 2.4 and earlier transmits configured credentials in plain text as part of job configuration forms, potentially resulting in their exposure...

4.3CVSS6.8AI score0.00024EPSS
Exploits0
Github Security Blog
Github Security Blogadded 2022/05/24 5:10 p.m.20 views

Credentials transmitted in plain text by Backlog Plugin

Backlog Plugin stores credentials in job config.xml files as part of its configuration. While the credentials are stored encrypted on disk, they are transmitted in plain text as part of the configuration form by Backlog Plugin 2.4 and earlier. These credentials could be viewed by users with...

4.3CVSS5AI score0.00024EPSS
Exploits0References5Affected Software1
OSV
OSVadded 2022/05/24 5:10 p.m.16 views

GHSA-P68C-XG89-2G5R Credentials transmitted in plain text by Backlog Plugin

Backlog Plugin stores credentials in job config.xml files as part of its configuration. While the credentials are stored encrypted on disk, they are transmitted in plain text as part of the configuration form by Backlog Plugin 2.4 and earlier. These credentials could be viewed by users with...

3.1CVSS4.5AI score0.00024EPSS
Exploits0References5
CNVD
CNVDadded 2020/09/17 12:0 a.m.2 views

Unspecified Vulnerability in CloudBees Jenkins Backlog Plugin

CloudBees Jenkins Hudson Labs is the United States CloudBees company's set of Java-based development of continuous integration tools . The product is mainly used to monitor the continuous software release/testing projects and some timed tasks . Backlog Plugin is used in one of the project...

4.3CVSS6.8AI score0.00024EPSS
Exploits0References1
NVD
NVDadded 2020/03/09 4:15 p.m.9 views

CVE-2020-2153

Jenkins Backlog Plugin 2.4 and earlier transmits configured credentials in plain text as part of job configuration forms, potentially resulting in their exposure...

4.3CVSS4.7AI score0.00024EPSS
Exploits0References2
Prion
Prionadded 2020/03/09 4:15 p.m.11 views

Code injection

Jenkins Backlog Plugin 2.4 and earlier transmits configured credentials in plain text as part of job configuration forms, potentially resulting in their exposure...

4CVSS4.6AI score0.00024EPSS
Exploits0References2Affected Software1
Cvelist
Cvelistadded 2020/03/09 3:1 p.m.13 views

CVE-2020-2153

Jenkins Backlog Plugin 2.4 and earlier transmits configured credentials in plain text as part of job configuration forms, potentially resulting in their exposure...

4.6AI score0.00024EPSS
Exploits0References2
CVE
CVEadded 2020/03/09 3:1 p.m.62 views

CVE-2020-2153

CVE-2020-2153 affects Jenkins Backlog Plugin versions 2.4 and earlier. The root cause is that credentials are transmitted in plain text as part of job configuration forms, while stored credentials remain encrypted on disk. This can expose credentials to users with Extended Read permission when co...

4.3CVSS4.6AI score0.00024EPSS
Exploits0References2Affected Software1
Rows per page
Query Builder