Lucene search
K

10 matches found

SUSE CVE
SUSE CVE
added 2023/02/15 5:35 a.m.4 views

SUSE CVE-2013-5573

Cross-site scripting XSS vulnerability in the default markup formatter in Jenkins 1.523 allows remote attackers to inject arbitrary web script or HTML via the Description field in the user configuration...

4.3CVSS5.7AI score0.05406EPSS
Exploits5References3
vulnersOsv
vulnersOsv
added 2022/05/17 1:31 a.m.3 views

ColumnPack:ColumnPack-plugin (=1.0.3), CustomHistory:CustomHistory (>=1.1 <=1.3) +888 more potentially affected by CVE-2013-5573 via org.jenkins-ci.main:jenkins-core (>=1.396 <=1.523)

org.jenkins-ci.main:jenkins-core MAVEN version =1.396, =1.1, =0.0.1, =1.0, =0.0.1, =0.9, =1.0, =1.0.0, =1.0, =1.0-beta-1, =2.1, =1.0, =1.1, =2.0.6 - com.cisco.step.jenkins.plugins:jenkow-parent =0.1 and more Source cves: CVE-2013-5573 Source advisory: OSV:GHSA-52G6-PFRQ-RXFV...

4.3CVSS5.8AI score0.05406EPSS
Exploits5
Tenable Nessus
Tenable Nessus
added 2014/02/17 12:0 a.m.36 views

FreeBSD : jenkins -- multiple vulnerabilities (3e0507c6-9614-11e3-b3a5-00e0814cab4e)

Jenkins Security Advisory reports : This advisory announces multiple security vulnerabilities that were found in Jenkins core. Please reference CVE/URL list for details %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from...

9.8CVSS8AI score0.84362EPSS
Exploits10References4
securityvulns
securityvulns
added 2014/01/09 12:0 a.m.67 views

[CVE-2013-5573] Jenkins v1.523 Default markup formatter permits offsite-bound forms

Advisory Information Title: Default markup formatter permits offsite-bound forms Date published : 2013-12-16 Date of last update: 2013-12-16 Vendors contacted : Jenkins CI v 1.523 Discovered by: Christian Catalano Severity: Low 02. Vulnerability Information CVE reference: CVE-2013-5573 CVSS v2...

4.3CVSS9.3AI score0.05406EPSS
Exploits5
ATTACKERKB
ATTACKERKB
added 2013/12/31 4:4 p.m.6 views

CVE-2013-5573

Cross-site scripting XSS vulnerability in the default markup formatter in Jenkins 1.523 allows remote attackers to inject arbitrary web script or HTML via the Description field in the user configuration...

4.3CVSS5.7AI score0.05406EPSS
Exploits5References8
UbuntuCve
UbuntuCve
added 2013/12/31 4:4 p.m.34 views

CVE-2013-5573

Cross-site scripting XSS vulnerability in the default markup formatter in Jenkins 1.523 allows remote attackers to inject arbitrary web script or HTML via the Description field in the user configuration...

4.3CVSS6AI score0.05406EPSS
Exploits5References2
CVE
CVE
added 2013/12/31 3:0 p.m.85 views

CVE-2013-5573

CVE-2013-5573 is an XSS in Jenkins where the default markup formatter allows remote attackers to inject arbitrary script/HTML via the Description field in user configurations. The primary public reference notes Jenkins 1.523 being affected; several connected advisories corroborate the CVE and des...

4.3CVSS7.7AI score0.05406EPSS
Exploits5References7Affected Software1
Packet Storm
Packet Storm
added 2013/12/19 12:0 a.m.39 views

Jenkins CI 1.523 Persistent Script Insertion

Advisory Information Title: Default markup formatter permits offsite-bound forms Date published : 2013-12-16 Date of last update: 2013-12-16 Vendors contacted : Jenkins CI v 1.523 Discovered by: Christian Catalano Severity: Low 02. Vulnerability Information CVE reference: CVE-2013-5573 CVSS v2...

4.3CVSS9.6AI score0.05406EPSS
Exploits5
exploitpack
exploitpack
added 2013/12/18 12:0 a.m.81 views

Jenkins 1.523 - Persistent HTML Code

Jenkins 1.523 - Persistent HTML Code 01. Advisory Information Title: Default markup formatter permits offsite-bound forms Date published : 2013-12-16 Date of last update: 2013-12-16 Vendors contacted : Jenkins CI v 1.523 Discovered by: Christian Catalano Severity: Low 02. Vulnerability Informatio...

4.3CVSS9.6AI score0.05406EPSS
Exploits5
Exploit DB
Exploit DB
added 2013/12/18 12:0 a.m.47 views

Jenkins 1.523 - Persistent HTML Code

Advisory Information Title: Default markup formatter permits offsite-bound forms Date published : 2013-12-16 Date of last update: 2013-12-16 Vendors contacted : Jenkins CI v 1.523 Discovered by: Christian Catalano Severity: Low 02. Vulnerability Information CVE reference: CVE-2013-5573 CVSS v2...

4.3CVSS7AI score0.05406EPSS
Exploits5
Rows per page
Query Builder