Lucene search
K

78 matches found

BDU FSTEC
BDU FSTEC
added 2021/02/25 12:0 a.m.5 views

The vulnerability of the vSphere Client plugin for managing VMware vCenter Server allows a attacker to send requests on behalf of the targeted server.

The vulnerability of the vSphere Client plugin for managing VMware vCenter Server lies in insufficient validation of incoming requests. Exploiting this vulnerability allows a malicious actor to send requests on behalf of the targeted server by sending specially crafted HTTP requests...

5.3CVSS7.2AI score0.88012EPSS
Exploits8References5Affected Software1
BDU FSTEC
BDU FSTEC
added 2021/02/25 12:0 a.m.5 views

The vulnerability of the vSphere Client plugin for managing VMware vCenter Server allows a hacker to execute arbitrary code.

The vulnerability of the vSphere Client plugin for managing VMware vCenter Server lies in insufficient validation of input data. Exploiting this vulnerability allows an attacker to execute arbitrary code by sending a specially crafted HTTP request remotely...

10CVSS8.5AI score0.9957EPSS
Exploits47References7Affected Software1
RedhatCVE
RedhatCVE
added 2020/04/01 11:1 a.m.44 views

CVE-2019-10392

Jenkins Git Client Plugin 2.8.4 and earlier and 3.0.0-rc did not properly restrict values passed as URL argument to an invocation of 'git ls-remote', resulting in OS command injection...

8.8CVSS8.4AI score0.25779EPSS
Exploits1References4
RedHat Linux
RedHat Linux
added 2020/02/25 2:40 p.m.4 views

jenkins-git-client-plugin: OS command injection via 'git ls-remote'

Jenkins Git Client Plugin 2.8.4 and earlier and 3.0.0-rc did not properly restrict values passed as URL argument to an invocation of 'git ls-remote', resulting in OS command injection...

8.8CVSS7.3AI score0.25779EPSS
Exploits1References5
CNVD
CNVD
added 2019/09/17 12:0 a.m.8 views

Jenkins Git client plugin command execution vulnerability

Jenkins is an open source software project , is based on Java development of a continuous integration tool . Git client plug-in for Jenkins plug-in provides git application programming interface . Jenkins Git client plug-in has a command execution vulnerability , with Job/Configure privileges of...

8.8CVSS7.6AI score0.25779EPSS
Exploits1References1
NVD
NVD
added 2019/09/12 2:15 p.m.27 views

CVE-2019-10392

Jenkins Git Client Plugin 2.8.4 and earlier and 3.0.0-rc did not properly restrict values passed as URL argument to an invocation of 'git ls-remote', resulting in OS command injection...

8.8CVSS9AI score0.25779EPSS
Exploits1References2
Cvelist
Cvelist
added 2019/09/12 1:55 p.m.32 views

CVE-2019-10392

Jenkins Git Client Plugin 2.8.4 and earlier and 3.0.0-rc did not properly restrict values passed as URL argument to an invocation of 'git ls-remote', resulting in OS command injection...

9AI score0.25779EPSS
Exploits1References2
CVE
CVE
added 2019/09/12 1:55 p.m.191 views

CVE-2019-10392

CVE-2019-10392 affects Jenkins Git Client Plugin (versions ≤2.8.4 and 3.0.0-rc): improper restriction of values passed to git ls-remote enables OS command injection. Exploitation details are present in a public exploit repository (GitHub). NVD CVSSv3.1 base score 8.8 (HIGH). Connected advisories ...

8.8CVSS8.8AI score0.25779EPSS
Exploits1References2Affected Software1
Positive Technologies
Positive Technologies
added 2019/09/12 12:0 a.m.5 views

PT-2019-11786 · Jenkins · Jenkins Git Client Plugin +1

Name of the Vulnerable Software and Affected Versions: Jenkins Git Client Plugin versions 2.8.4 and earlier Jenkins Git Client Plugin version 3.0.0-rc Description: The issue results from improper restriction of values passed as URL arguments to an invocation of git ls-remote, leading to OS comman...

8.8CVSS8.8AI score0.25779EPSS
Exploits1References8
CNVD
CNVD
added 2017/11/07 12:0 a.m.5 views

CloudBees Jenkins Git Client Plugin Information Disclosure Vulnerability

CloudBees Jenkins formerly known as Hudson Labs is the United States CloudBees company's set of Java-based development of continuous integration tools , it is mainly used to monitor the continuous software version of the release/testing project and some of the timed execution of the task . Git...

3.3CVSS6.9AI score0.00379EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2017/11/03 9:49 a.m.24 views

CVE-2017-1000242

Jenkins Git Client Plugin 2.4.2 and earlier creates temporary file with insecure permissions resulting in information disclosure...

4.4CVSS1.2AI score0.00379EPSS
Exploits0References2
CVE
CVE
added 2017/11/01 1:0 p.m.79 views

CVE-2017-1000242

CVE-2017-1000242 affects Jenkins Git Client Plugin 2.4.2 and earlier, where temporary files are created with insecure permissions, enabling information disclosure. The known impact is information leakage due to insecure file permissions; exploitation details are not provided in the available docu...

3.3CVSS3.8AI score0.00379EPSS
Exploits0References2Affected Software1
Cvelist
Cvelist
added 2017/11/01 1:0 p.m.18 views

CVE-2017-1000242

Jenkins Git Client Plugin 2.4.2 and earlier creates temporary file with insecure permissions resulting in information disclosure...

3.7AI score0.00379EPSS
Exploits0References2
Patchstack
Patchstack
added 2014/12/02 12:0 a.m.7 views

WordPress InfiniteWP Client Plugin <= 1.3.7 - Privilege Escalation

Because of this vulnerability, Javascript or iframe malware, spam links or defacement messages could be injected. Solution Upgrade the plugin...

2.9AI score
Exploits0References1Affected Software1
UbuntuCve
UbuntuCve
added 2012/12/12 11:38 a.m.24 views

CVE-2012-5141

Google Chrome before 23.0.1271.97 does not properly restrict instantiation of the Chromoting client plug-in, which has unspecified impact and attack vectors...

10CVSS7.2AI score0.00987EPSS
Exploits0References3
OSV
OSV
added 2012/10/01 3:26 a.m.4 views

UBUNTU-CVE-2012-4415

Stack-based buffer overflow in the guacclientpluginopen function in libguac in Guacamole before 0.6.3 allows remote attackers to cause a denial of service crash or execute arbitrary code via a long protocol name...

7.5CVSS6.4AI score0.13581EPSS
Exploits5References3
0day.today
0day.today
added 2010/09/20 12:0 a.m.34 views

Novell iPrint Client Browser Plugin call-back-url Stack Overflow

Exploit for windows platform in category remote exploits ================================================================ Novell iPrint Client Browser Plugin call-back-url Stack Overflow ================================================================ Title : Novell iPrint Client Browser Plugin...

7.1AI score0.35987EPSS
Exploits18
Exploit DB
Exploit DB
added 2010/09/14 12:0 a.m.22 views

Novell iPrint Client Browser Plugin - ExecuteRequest debug Stack Overflow

// Calc.exe shellcode = unescape'%uc931%ue983%ud9de%ud9ee%u2474%u5bf4%u7381%u3d13%u5e46%u8395'+ '%ufceb%uf4e2%uaec1%u951a%u463d%ud0d5%ucd01%u9022%u4745%u1eb1'+ '%u5e72%ucad5%u471d%udcb5%u72b6%u94d5%u77d3%u0c9e%uc291%ue19e'+ '%u873a%u9894%u843c%u61b5%u1206%u917a%ua348%ucad5%u4719%uf3b5'+...

7.4AI score
Exploits0
Rows per page
Query Builder