CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

29 matches found

EUVD•added 2025/10/03 8:7 p.m.•1 views

EUVD-2022-6165

Malicious code in bioql PyPI...

6.5CVSS6.4AI score0.00063EPSS

Exploits0References3

EUVD•added 2025/10/03 8:7 p.m.•4 views

EUVD-2022-6187

Malicious code in bioql PyPI...

4.3CVSS5.1AI score0.00217EPSS

Exploits0References3

RedhatCVE•added 2025/05/22 11:4 p.m.•5 views

CVE-2022-34208

A missing permission check in Jenkins Beaker builder Plugin 1.10 and earlier allows attackers with Overall/Read permission to connect to an attacker-specified URL...

4.3CVSS6.5AI score0.00217EPSS

Exploits0References1

RedhatCVE•added 2025/05/22 11:3 p.m.•4 views

CVE-2022-34207

A cross-site request forgery CSRF vulnerability in Jenkins Beaker builder Plugin 1.10 and earlier allows attackers to connect to an attacker-specified URL...

6.5CVSS6.7AI score0.00063EPSS

Exploits0References1

RedhatCVE•added 2025/05/22 10:25 a.m.•6 views

CVE-2019-10398

Jenkins Beaker Builder Plugin 1.9 and earlier stored credentials unencrypted in its global configuration file on the Jenkins master where they could be viewed by users with access to the master file system...

5.5CVSS6.5AI score0.00011EPSS

Exploits0References1

Github Security Blog•added 2022/06/24 12:0 a.m.•17 views

Jenkins Beaker builder Plugin Missing Authorization vulnerability

Jenkins Beaker builder Plugin 1.10 and earlier does not perform a permission check in a method implementing form validation. This allows attackers with Overall/Read permission to connect to an attacker-specified URL. Additionally, this form validation method does not require POST requests,...

4.3CVSS4.8AI score0.00217EPSS

Exploits0References3Affected Software1

OSV•added 2022/06/24 12:0 a.m.•13 views

GHSA-XFJQ-5M4W-CC6H Jenkins Beaker builder Plugin Missing Authorization vulnerability

4.3CVSS4.8AI score0.00217EPSS

Exploits0References3

Github Security Blog•added 2022/06/24 12:0 a.m.•20 views

Cross-Site Request Forgery in Jenkins Beaker builder Plugin

A cross-site request forgery CSRF vulnerability in Jenkins Beaker builder Plugin 1.10 and earlier allows attackers to connect to an attacker-specified URL...

6.5CVSS7.6AI score0.00063EPSS

Exploits0References3Affected Software1

OSV•added 2022/06/24 12:0 a.m.•16 views

GHSA-VQPP-Q5X5-QJ4R Cross-Site Request Forgery in Jenkins Beaker builder Plugin

A cross-site request forgery CSRF vulnerability in Jenkins Beaker builder Plugin 1.10 and earlier allows attackers to connect to an attacker-specified URL...

4.3CVSS6.6AI score0.00063EPSS

Exploits0References3

CNVD•added 2022/06/24 12:0 a.m.•135 views

Jenkins Beaker builder Plugin跨站请求伪造漏洞

Jenkins and Jenkins Plugin are both Jenkins open source products.Jenkins is an application. Jenkins Plugin is an application that provides hundreds of plugins to support building, deploying, and automating any project. An attacker could use this vulnerability to connect to a specified URL by...

4.3CVSS1.7AI score0.00217EPSS

Exploits0References1

CNVD•added 2022/06/24 12:0 a.m.•124 views

Jenkins Beaker builder Plugin Cross-site Request Forgery Vulnerability (CNVD-2022-49788)

6.5CVSS1.8AI score0.00063EPSS

Exploits0References1

OSV•added 2022/06/23 5:15 p.m.•0 views

CVE-2022-34208

A missing permission check in Jenkins Beaker builder Plugin 1.10 and earlier allows attackers with Overall/Read permission to connect to an attacker-specified URL...

4.3CVSS5.8AI score

Exploits0References1

OSV•added 2022/06/23 5:15 p.m.•0 views

CVE-2022-34207

A cross-site request forgery CSRF vulnerability in Jenkins Beaker builder Plugin 1.10 and earlier allows attackers to connect to an attacker-specified URL...

6.5CVSS6.3AI score0.00063EPSS

Exploits0References1

ATTACKERKB•added 2022/06/23 5:15 p.m.•1 views

CVE-2022-34208

A missing permission check in Jenkins Beaker builder Plugin 1.10 and earlier allows attackers with Overall/Read permission to connect to an attacker-specified URL...

4.3CVSS6.2AI score0.00217EPSS

Exploits0References2

ATTACKERKB•added 2022/06/23 5:15 p.m.•0 views

CVE-2022-34207

A cross-site request forgery CSRF vulnerability in Jenkins Beaker builder Plugin 1.10 and earlier allows attackers to connect to an attacker-specified URL...

6.5CVSS6.4AI score0.00063EPSS

Exploits0References2

NVD•added 2022/06/23 5:15 p.m.•12 views

CVE-2022-34207

A cross-site request forgery CSRF vulnerability in Jenkins Beaker builder Plugin 1.10 and earlier allows attackers to connect to an attacker-specified URL...

6.5CVSS0.00063EPSS

Exploits0References1

Prion•added 2022/06/23 5:15 p.m.•18 views

Cross site request forgery (csrf)

A cross-site request forgery CSRF vulnerability in Jenkins Beaker builder Plugin 1.10 and earlier allows attackers to connect to an attacker-specified URL...

4.3CVSS6.4AI score0.00063EPSS

Exploits0References1Affected Software1

Prion•added 2022/06/23 5:15 p.m.•13 views

Information disclosure

A missing permission check in Jenkins Beaker builder Plugin 1.10 and earlier allows attackers with Overall/Read permission to connect to an attacker-specified URL...

4CVSS4.4AI score0.00217EPSS

Exploits0References1Affected Software1

CVE•added 2022/06/22 2:41 p.m.•106 views

CVE-2022-34208

CVE-2022-34208 : Jenkins Beaker Builder Plugin 1.10 and earlier has a missing permission check in a form-validation path. This allows attackers with Overall/Read permission to connect to an attacker-specified URL, and the flow may enable CSRF scenarios. The vulnerability is documented across mult...

4.3CVSS4.3AI score0.00217EPSS

Exploits0References1Affected Software1

Cvelist•added 2022/06/22 2:41 p.m.•15 views

CVE-2022-34207

A cross-site request forgery CSRF vulnerability in Jenkins Beaker builder Plugin 1.10 and earlier allows attackers to connect to an attacker-specified URL...

8AI score0.00063EPSS

Exploits0References1

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by