11 matches found
EUVD-2023-1371
Malicious code in bioql PyPI...
EUVD-2022-3741
Malicious code in bioql PyPI...
EUVD-2023-1344
Malicious code in bioql PyPI...
EUVD-2022-7433
Malicious code in bioql PyPI...
EUVD-2023-1225
Malicious code in bioql PyPI...
CVE-2024-28159
A missing permission check in Jenkins Subversion Partial Release Manager Plugin 1.0.1 and earlier allows attackers with Item/Read permission to trigger a build...
Information disclosure
A missing permission check in Jenkins Subversion Partial Release Manager Plugin 1.0.1 and earlier allows attackers with Item/Read permission to trigger a build...
CVE-2024-28159
CVE-2024-28159 affects Jenkins Subversion Partial Release Manager Plugin 1.0.1 and earlier. The issue is a missing permission check in the plugin, allowing attackers with Item/Read permission to trigger a build via an HTTP endpoint. This is the core risk described across multiple sources (NVD/Red...
CVE-2023-40349
The CVE-2023-40349 entry concerns Jenkins Gogs Plugin (versions 1.0.15 and earlier). The vulnerability arises from improper initialization of the option intended to secure the webhook endpoint, allowing unauthenticated attackers to trigger builds of jobs. The advisory notes that the webhook endpo...
CVE-2023-30519
A missing permission check in Jenkins Quay.io trigger Plugin 0.1 and earlier allows unauthenticated attackers to trigger builds of jobs corresponding to the attacker-specified repository...
CVE-2023-30519
A missing permission check in Jenkins Quay.io trigger Plugin 0.1 and earlier allows unauthenticated attackers to trigger builds of jobs corresponding to the attacker-specified repository...