CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

6 matches found

EUVD•added 2025/10/03 8:7 p.m.•2 views

EUVD-2023-1308

Malicious code in bioql PyPI...

4.3CVSS4.9AI score0.00179EPSS

Exploits0References5

RedhatCVE•added 2025/05/23 3:43 a.m.•5 views

CVE-2023-30529

Jenkins Lucene-Search Plugin 387.v938aecbf7fe9 and earlier does not require POST requests for an HTTP endpoint, allowing attackers to reindex the database...

4.3CVSS6.7AI score0.00179EPSS

Exploits0References1

RedhatCVE•added 2025/05/23 1:11 a.m.•4 views

CVE-2022-36910

Jenkins Lucene-Search Plugin 370.v62a5f618cd3a and earlier does not perform a permission check in several HTTP endpoints, allowing attackers with Overall/Read permission to reindex the database and to obtain information about jobs otherwise inaccessible to them...

5.4CVSS6.2AI score0.00158EPSS

Exploits0References1

Prion•added 2023/04/12 6:15 p.m.•13 views

Code injection

Jenkins Lucene-Search Plugin 387.v938aecbf7fe9 and earlier does not require POST requests for an HTTP endpoint, allowing attackers to reindex the database...

4.3CVSS4.6AI score0.00179EPSS

Exploits0References2Affected Software1

CVE•added 2023/04/12 5:5 p.m.•60 views

CVE-2023-30529

CVE-2023-30529 affects the Jenkins Lucene-Search Plugin (versions 387.v938a_ecb_f7fe9 and earlier). The underlying issue is that the plugin’s HTTP endpoint does not require POST requests, enabling cross-site request forgery that can be used to reindex the database. The accompanying sources consis...

4.3CVSS4.5AI score0.00179EPSS

Exploits0References2Affected Software1

Vulnrichment•added 2023/04/12 5:5 p.m.•5 views

CVE-2023-30529

Jenkins Lucene-Search Plugin 387.v938aecbf7fe9 and earlier does not require POST requests for an HTTP endpoint, allowing attackers to reindex the database...

7AI score0.00179EPSS

Exploits0References2

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by