Lucene search
K

11 matches found

Tenable Nessus
Tenable Nessus
added 2025/03/04 12:0 a.m.8 views

Linux Distros Unpatched Vulnerability : CVE-2014-1869

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Multiple cross-site scripting XSS vulnerabilities in ZeroClipboard.swf in ZeroClipboard before 1.3.2, as maintained by Jon Rohan and James M. Greene, allow remo...

4.3CVSS8.3AI score0.02785EPSS
Exploits0References3
Veracode
Veracode
added 2019/05/02 5:21 a.m.49 views

Cross-Site Scripting (XSS)

OpenShift Enterprise by Red Hat is the company's cloud computing Platform-as-a-Service PaaS solution designed for on-premise or private cloud deployments. The following security issues are addressed with this release: An authorization flaw was discovered in Kubernetes; the API server did not...

9.8CVSS8.6AI score0.86829EPSS
Exploits12References40Affected Software53
Veracode
Veracode
added 2019/05/02 5:21 a.m.41 views

Path Traversal

OpenShift Enterprise by Red Hat is the company's cloud computing Platform-as-a-Service PaaS solution designed for on-premise or private cloud deployments. The following security issues are addressed with this release: An authorization flaw was discovered in Kubernetes; the API server did not...

9.8CVSS8.6AI score0.86829EPSS
Exploits12References40Affected Software53
Veracode
Veracode
added 2019/05/02 5:21 a.m.36 views

Sensitive Information Disclosure

OpenShift Enterprise by Red Hat is the company's cloud computing Platform-as-a-Service PaaS solution designed for on-premise or private cloud deployments. The following security issues are addressed with this release: An authorization flaw was discovered in Kubernetes; the API server did not...

9.8CVSS8.6AI score0.86829EPSS
Exploits12References40Affected Software53
OpenVAS
OpenVAS
added 2015/12/21 12:0 a.m.41 views

Jenkins Multiple Vulnerabilities (Oct 2014) - Windows

Jenkins is prone to multiple vulnerabilities. SPDX-FileCopyrightText: 2015 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:jenkins:jenkins"; ifdescription...

7.5CVSS8.9AI score0.12768EPSS
Exploits0References7
ArchLinux
ArchLinux
added 2014/10/02 12:0 a.m.70 views

jenkins: multiple issues

SECURITY-87/CVE-2014-3661 anonymous DoS attack through CLI handshake This vulnerability allows unauthenticated users with access to Jenkins' HTTP/HTTPS port to mount a DoS attack on Jenkins through thread exhaustion. - SECURITY-110/CVE-2014-3662 User name discovery Anonymous users can test if the...

7.5CVSS2.6AI score0.12768EPSS
Exploits0References13
Tenable Nessus
Tenable Nessus
added 2014/10/02 12:0 a.m.77 views

FreeBSD : jenkins -- remote execution, privilege escalation, XSS, password exposure, ACL hole, DoS (549a2771-49cc-11e4-ae2c-c80aa9043978)

Jenkins Security Advisory : Please reference CVE/URL list for details %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from the FreeBSD VuXML database : Copyright 2003-2019 Jacques Vidrine and contributors Redistribution an...

7.5CVSS7.6AI score0.12768EPSS
Exploits0References15
OSV
OSV
added 2014/02/08 12:55 a.m.0 views

DEBIAN-CVE-2014-1869

Multiple cross-site scripting XSS vulnerabilities in ZeroClipboard.swf in ZeroClipboard before 1.3.2, as maintained by Jon Rohan and James M. Greene, allow remote attackers to inject arbitrary web script or HTML via vectors related to certain SWF query parameters aka loaderInfo.parameters...

4.3CVSS6AI score0.02785EPSS
Exploits0References1
UbuntuCve
UbuntuCve
added 2014/02/08 12:55 a.m.31 views

CVE-2014-1869

Multiple cross-site scripting XSS vulnerabilities in ZeroClipboard.swf in ZeroClipboard before 1.3.2, as maintained by Jon Rohan and James M. Greene, allow remote attackers to inject arbitrary web script or HTML via vectors related to certain SWF query parameters aka loaderInfo.parameters...

4.3CVSS7.2AI score0.02785EPSS
Exploits0References1
CVE
CVE
added 2014/02/08 12:0 a.m.74 views

CVE-2014-1869

The CVE-2014-1869 entry covers multiple XSS vulnerabilities in ZeroClipboard.swf (ZeroClipboard before 1.3.2) used by Jenkins. The underlying issue is reflective/scriptable XSS through SWF query parameters (loaderInfo.parameters), enabling remote attackers to inject arbitrary script/HTML. Documen...

4.3CVSS7.3AI score0.02785EPSS
Exploits0References8Affected Software2
Debian CVE
Debian CVE
added 2014/02/08 12:0 a.m.32 views

CVE-2014-1869

Multiple cross-site scripting XSS vulnerabilities in ZeroClipboard.swf in ZeroClipboard before 1.3.2, as maintained by Jon Rohan and James M. Greene, allow remote attackers to inject arbitrary web script or HTML via vectors related to certain SWF query parameters aka loaderInfo.parameters...

4.3CVSS8.4AI score0.02785EPSS
Exploits0
Rows per page
Query Builder