19 matches found
CVE-2024-45257
A Command Injection issue in the payload build page in BYOB Build Your Own Botnet 2.0 allows attackers to execute arbitrary commands on the server via a crafted build parameter. This occurs in freeze in core/generators.py...
CVE-2024-45257
A Command Injection issue in the payload build page in BYOB Build Your Own Botnet 2.0 allows attackers to execute arbitrary commands on the server via a crafted build parameter. This occurs in freeze in core/generators.py...
EUVD-2022-39038
Malicious code in bioql PyPI...
Exploit for Improper Input Validation in Jenkins Git_Parameter
CVE-2025-53652: Jenkins Git Parameter Plugin Unvalidated Input...
CVE-2022-36322
In JetBrains TeamCity before 2022.04.2 build parameter injection was possible...
JetBrains TeamCity Information Disclosure Vulnerability
JetBrains TeamCity is a set of distributed build management and continuous integration tools from the Czech company JetBrains. The tool provides continuous unit testing, code quality analysis and build problem analysis reports and other features. JetBrains TeamCity suffers from an information...
SUSE CVE-2016-3721
Jenkins before 2.3 and LTS before 1.651.2 might allow remote authenticated users to inject arbitrary build parameters into the build environment via environment variables...
CVE-2022-36322
In JetBrains TeamCity before 2022.04.2 build parameter injection was possible...
CVE-2022-36322
In JetBrains TeamCity before 2022.04.2 build parameter injection was possible...
CVE-2022-36322
In JetBrains TeamCity before 2022.04.2 build parameter injection was possible...
Code injection
In JetBrains TeamCity before 2022.04.2 build parameter injection was possible...
CVE-2022-36322
CVE-2022-36322 affects JetBrains TeamCity prior to 2022.04.2, where build parameter injection was possible via the build configuration workflow. The vulnerability lies in build parameter handling, enabling injection that could impact confidentiality, integrity, and availability as indicated by th...
Jenkins Extra Columns 跨站脚本漏洞
CloudBees Jenkins Hudson Labs is the United States CloudBees company a set of Java-based development of continuous integration tools . The product is mainly used to monitor the continuous software version release/testing project and some timed execution of the task . A cross-site scripting...
JetBrains TeamCity Information Disclosure Vulnerability (CNVD-2021-09320)
TeamCity is a Java-based build management and continuous integration server from JetBrains. An information disclosure vulnerability exists in JetBrains TeamCity versions prior to 2020.2. An attacker can exploit the vulnerability to obtain an ECR token from a build parameter...
CVE-2021-25776
In JetBrains TeamCity before 2020.2, an ECR token could be exposed in a build's parameters...
JetBrains TeamCity 安全漏洞
TeamCity is a Java-based build management and continuous integration server from JetBrains. An information disclosure vulnerability exists in JetBrains TeamCity versions prior to 2020.2. An attacker can exploit the vulnerability to obtain an ECR token from a build parameter...
CVE-2016-3721
Jenkins before 2.3 and LTS before 1.651.2 might allow remote authenticated users to inject arbitrary build parameters into the build environment via environment variables...
CVE-2016-3721
CVE-2016-3721 affects Jenkins core: Jenkins before 2.3 and LTS before 1.651.2 may allow remote authenticated users to inject arbitrary build parameters into the build environment via environment variables. Root cause is unsafe handling of environment variables during builds, enabling parameter le...
CloudBees Jenkins CI and Jenkins LTS Unauthorized Modification Vulnerability
CloudBees Jenkins CI formerly known as Hudson Labs is a Java-based continuous integration tool from CloudBees, Inc. It is mainly used to monitor ongoing software releases/testing projects and a number of timed tasks.LTS Long-Term Support is a long-supported version of CloudBees Jenkins CI is a...