Lucene search
K

30 matches found

Patchstack
Patchstack
added 2026/02/02 8:50 a.m.7 views

WordPress SEO Plugin by Squirrly SEO plugin <= 12.3.19 - Authenticated (Contributor+) SQL Injection via url Parameter vulnerability

Authenticated Contributor+ SQL Injection via url Parameter vulnerability discovered by bart in WordPress Plugin SEO Plugin by Squirrly SEO versions = 12.3.19...

8.8CVSS5.7AI score0.10969EPSS
Exploits1References1Affected Software1
EUVD
EUVD
added 2025/10/03 8:7 p.m.6 views

EUVD-2022-7372

Malicious code in bioql PyPI...

5.4CVSS5.6AI score0.00602EPSS
Exploits0References6
Packet Storm News
Packet Storm News
added 2025/04/19 12:0 a.m.6 views

A Data-Centric Approach for Safe and Secure Large Language Models against Threatening and Toxic Content

Large Language Models LLM have made remarkable progress, but concerns about potential biases and harmful content persist. To address these apprehensions, we introduce a practical solution for ensuring LLM's safe and ethical use. Our novel approach focuses on a post-generation correction mechanism...

7.3AI score
Exploits0
Openbugbounty
Openbugbounty
added 2024/05/26 8:52 a.m.11 views

bartmoeyaert.com Cross Site Scripting vulnerability OBB-3930511

Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...

6.2AI score
Exploits0
OSV
OSV
added 2022/11/16 12:0 p.m.24 views

GHSA-J923-26C2-QQ9P Jenkins BART Plugin vulnerable to cross-site scripting (XSS)

Jenkins BART Plugin 1.0.3 and earlier does not escape the parsed content of build logs before rendering it on the Jenkins UI, resulting in a stored cross-site scripting XSS vulnerability. Currently, there are no known workarounds or patches available...

8CVSS5.5AI score0.00602EPSS
Exploits0References6
Github Security Blog
Github Security Blog
added 2022/11/16 12:0 p.m.20 views

Jenkins BART Plugin vulnerable to cross-site scripting (XSS)

Jenkins BART Plugin 1.0.3 and earlier does not escape the parsed content of build logs before rendering it on the Jenkins UI, resulting in a stored cross-site scripting XSS vulnerability. Currently, there are no known workarounds or patches available...

5.4CVSS5.4AI score0.00602EPSS
Exploits0References6Affected Software1
NVD
NVD
added 2022/11/15 8:15 p.m.29 views

CVE-2022-45387

Jenkins BART Plugin 1.0.3 and earlier does not escape the parsed content of build logs before rendering it on the Jenkins UI, resulting in a stored cross-site scripting XSS vulnerability...

5.4CVSS0.00602EPSS
Exploits0References2
OSV
OSV
added 2022/11/15 8:15 p.m.14 views

CVE-2022-45387

Jenkins BART Plugin 1.0.3 and earlier does not escape the parsed content of build logs before rendering it on the Jenkins UI, resulting in a stored cross-site scripting XSS vulnerability...

5.4CVSS5.3AI score
Exploits0References2
Prion
Prion
added 2022/11/15 8:15 p.m.20 views

Cross site scripting

Jenkins BART Plugin 1.0.3 and earlier does not escape the parsed content of build logs before rendering it on the Jenkins UI, resulting in a stored cross-site scripting XSS vulnerability...

4.9CVSS5.2AI score0.00602EPSS
Exploits0References2Affected Software1
Vulnrichment
Vulnrichment
added 2022/11/15 12:0 a.m.7 views

CVE-2022-45387

Jenkins BART Plugin 1.0.3 and earlier does not escape the parsed content of build logs before rendering it on the Jenkins UI, resulting in a stored cross-site scripting XSS vulnerability...

5.6AI score0.00602EPSS
Exploits0References2
CNNVD
CNNVD
added 2022/11/15 12:0 a.m.7 views

Jenkins Plugin BART 跨站脚本漏洞

Jenkins and Jenkins Plugin are both Jenkins open source products.Jenkins is a software application . An open source automation server Jenkins provides hundreds of plugins to support building, deploying, and automating any project.Jenkins Plugin is a software application. A cross-site scripting...

5.4CVSS5.6AI score0.00602EPSS
Exploits0References6
Positive Technologies
Positive Technologies
added 2022/11/15 12:0 a.m.7 views

PT-2022-27489 · Jenkins · Jenkins Bart Plugin +1

Name of the Vulnerable Software and Affected Versions: Jenkins BART Plugin versions 1.0.3 and earlier Description: The issue is related to a stored cross-site scripting XSS vulnerability. It occurs because the Jenkins BART Plugin does not escape the parsed content of build logs before rendering i...

8CVSS5AI score0.00602EPSS
Exploits0References10
CVE
CVE
added 2022/11/15 12:0 a.m.274 views

CVE-2022-45387

CVE-2022-45387 refers to the Jenkins BART Plugin (versions 1.0.3 and earlier) that fails to escape the parsed content of build logs before rendering in the Jenkins UI, resulting in a stored cross-site scripting (XSS) vulnerability. The connected documents corroborate this as a stored XSS in BART ...

5.4CVSS5.4AI score0.00602EPSS
Exploits0References2Affected Software1
Cvelist
Cvelist
added 2022/11/15 12:0 a.m.20 views

CVE-2022-45387

Jenkins BART Plugin 1.0.3 and earlier does not escape the parsed content of build logs before rendering it on the Jenkins UI, resulting in a stored cross-site scripting XSS vulnerability...

5.8AI score0.00602EPSS
Exploits0References2
ThreatPost
ThreatPost
added 2021/08/13 8:8 p.m.231 views

SolarWinds 2.0 Could Ignite Financial Crisis – Podcast

Could a cyberattack spark the next financial crisis? Following the calamitous, widespread SolarWinds attacks in April, that’s exactly what the New York State Department of Financial Services DFS has suggested. “This incident confirms that the next great financial crisis could come from a...

7.1AI score
Exploits0References10
vulnersOsv
vulnersOsv
added 2019/06/14 4:9 p.m.5 views

@bart.sk-ecommerce/node-touchstore-service (=1.0.17), @based/server (>=0.0.1 <=2.6.1) +156 more potentially affected by unknown CVE via squel (>=1.1.1 <=5.13.0)

squel NPM version =1.1.1, =0.0.1, =2.1.0, =1.1.2, =0.0.1, =2.0.0, =1.4.0, =0.1.1, =1.0.0, =0.11.4-canary.0f11eb2, =0.1.0, =0.0.1, =1.0.0, =1.0.15, =1.0.0, =1.2.0 and more Source cves: unknown CVE Source advisory: OSV:GHSA-4QHX-G9WP-G9M6...

5.8AI score
Exploits0
RedHat Linux
RedHat Linux
added 2017/10/17 7:53 p.m.47 views

Moderate: Red Hat Security Advisory: rh-sso7-keycloak security update

An update for rh-sso7-keycloak is now available for Red Hat Single Sign-On 7.1 for RHEL 7. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each...

7.5CVSS6.6AI score0.02432EPSS
Exploits0References7
RedHat Linux
RedHat Linux
added 2017/10/17 7:53 p.m.92 views

Moderate: Red Hat Security Advisory: rh-sso7-keycloak security update

An update for rh-sso7-keycloak is now available for Red Hat Single Sign-On 7.1 for RHEL 6. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each...

7.5CVSS6.6AI score0.02432EPSS
Exploits0References7
Drupal
Drupal
added 2017/05/03 12:0 a.m.17 views

shib_auth Moderately Critical - Multiple vulnerabilities - SA-CONTRIB-2017-043

This module enables you to login via Shibboleth. The module doesn't sufficiently logout the user when the shib session expires, which depending on the caching mechanism makes private data public. This vulnerability is mitigated by the fact that shibauth would have to be used in combination with a...

7AI score
Exploits0References12
Packet Storm
Packet Storm
added 2016/06/30 12:0 a.m.43 views

RockLoader SQL Injection / Shell Upload

Exploit Title: RockLoader aka Bart Malware SQLi and shell file upload Date: 27-06-2016 Software Link Leak: https://github.com/colocation/RockLoader-source Exploit Author: Danail Velev Contact: ICQ: 209030 / [email protected] Website: http://colocation.bg/ Category: webapps / malware / private...

0.3AI score
Exploits0
Rows per page
Query Builder