39 matches found
EUVD-2020-5673
Malware in sbrugna...
EUVD-2022-0649
Malicious code in bioql PyPI...
Jenkins batch task Plugin cross-site request forgery vulnerability
Jenkins is a Jenkins open source application. An open source automation server Jenkins provides hundreds of plugins to support building, deploying and automating any project.Jenkins batch task Plugin 1.19 and earlier versions are vulnerable to cross-site request forgery. An attacker with...
CSRF vulnerability in Jenkins batch task Plugin
Cross-site request forgery CSRF vulnerabilities in Jenkins batch task Plugin 1.19 and earlier allows attackers with Overall/Read access to retrieve logs, build or delete a batch task...
GHSA-MH8G-8JWP-Q6XW CSRF vulnerability in Jenkins batch task Plugin
Cross-site request forgery CSRF vulnerabilities in Jenkins batch task Plugin 1.19 and earlier allows attackers with Overall/Read access to retrieve logs, build or delete a batch task...
CVE-2022-23115
Cross-site request forgery CSRF vulnerabilities in Jenkins batch task Plugin 1.19 and earlier allows attackers with Overall/Read access to retrieve logs, build or delete a batch task...
CVE-2022-23115
Cross-site request forgery CSRF vulnerabilities in Jenkins batch task Plugin 1.19 and earlier allows attackers with Overall/Read access to retrieve logs, build or delete a batch task...
CVE-2022-23115
Cross-site request forgery CSRF vulnerabilities in Jenkins batch task Plugin 1.19 and earlier allows attackers with Overall/Read access to retrieve logs, build or delete a batch task...
Cross site request forgery (csrf)
Cross-site request forgery CSRF vulnerabilities in Jenkins batch task Plugin 1.19 and earlier allows attackers with Overall/Read access to retrieve logs, build or delete a batch task...
CVE-2022-23115
The CVE-2022-23115 entry concerns a CSRF vulnerability in the Jenkins batch task Plugin (versions 1.19 and earlier). An attacker with Overall/Read access can retrieve logs and also build or delete a batch task. This vulnerability is corroborated by multiple security advisories in the connected da...
CVE-2022-23115
Cross-site request forgery CSRF vulnerabilities in Jenkins batch task Plugin 1.19 and earlier allows attackers with Overall/Read access to retrieve logs, build or delete a batch task...
PT-2022-15858 · Jenkins · Jenkins Batch Task Plugin +1
Name of the Vulnerable Software and Affected Versions: Jenkins batch task Plugin versions 1.19 and earlier Description: The issue allows attackers with Overall/Read access to perform certain actions due to cross-site request forgery CSRF vulnerabilities. These actions include retrieving logs,...
Jenkins Plugin 跨站请求伪造漏洞
Jenkins is a Jenkins open source application. An open source automation server Jenkins provides hundreds of plugins to support building, deploying and automating any project.Jenkins batch task Plugin 1.19 and earlier versions are vulnerable to cross-site request forgery. An attacker with...
CVE-2020-13419
OpenIAM before 4.2.0.3 allows Directory Traversal in the Batch task...
Directory traversal
OpenIAM before 4.2.0.3 allows Directory Traversal in the Batch task...
CVE-2020-13419
CVE-2020-13419 concerns OpenIAM before 4.2.0.3, where a directory traversal vulnerability exists in the Batch task. The available connected sources confirm the affected product is OpenIAM (identity and access management platform) and the root cause is a directory traversal issue in batch task pro...
CVE-2020-13419
OpenIAM before 4.2.0.3 allows Directory Traversal in the Batch task...
CVE-2020-7184
A viewbatchtaskresultdetailfact expression language injection remote code execution vulnerability was discovered in HPE Intelligent Management Center iMC versions: Prior to iMC PLAT 7.3 E0705P07...
HPE Intelligent Management Center (IMC) viewBatchTaskResultDetailFact Expression Language Injection Remote Code Execution Vulnerability
HPE Intelligent Management Center IMC is a comprehensive management platform built from the ground up to support the Failure, Configuration, Accounting, Performance and Security FCAPS model. A viewBatchTaskResultDetailFact expression language injection remote code execution vulnerability exists i...