Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

6 matches found

CNNVD
CNNVDadded 2026/03/28 12:0 a.m.2 views

yTree 缓冲区错误漏洞

yTree is a terminal-based file management and directory browsing tool developed by Werner Bregulla. Versions 1.94 to 1.1 of yTree contain a buffer error vulnerability. This vulnerability stems from a stack buffer overflow, which could allow local attackers to execute arbitrary code by providing...

8.6CVSS6.4AI score0.00007EPSS
Exploits0References3
RedHat Linux
RedHat Linuxadded 2023/05/24 5:13 p.m.4 views

Jenkins: Workspace temporary directories accessible through directory browser

A flaw was found in Jenkins. Jenkins uses temporary directories adjacent to workspace directories, usually with the @tmp name suffix, to store temporary files related to the build. In pipelines, these temporary directories are adjacent to the current working directory when operating in a...

4.3CVSS7.3AI score0.0274EPSS
Exploits0References5
Positive Technologies
Positive Technologiesadded 2022/11/11 12:0 a.m.3 views

PT-2022-26136 · Wsgidav · Wsgidav

Name of the Vulnerable Software and Affected Versions: WsgiDAV versions prior to 4.1.0 Description: Implementations using this library with directory browsing enabled may be susceptible to Cross Site Scripting XSS attacks. This issue occurs when untrusted data is displayed in the directory...

8.2CVSS6.1AI score0.0028EPSS
Exploits0References10
Positive Technologies
Positive Technologiesadded 2022/10/19 12:0 a.m.3 views

PT-2022-26919 · Jenkins · Jenkins 360 Fireline Plugin +1

Name of the Vulnerable Software and Affected Versions: Jenkins 360 FireLine Plugin versions 1.7.2 and earlier Description: The issue concerns the Jenkins 360 FireLine Plugin, which programmatically disables Content-Security-Policy protection for user-generated content in workspaces, archived...

5.3CVSS5AI score0.01497EPSS
Exploits0References7
RedHat Linux
RedHat Linuxadded 2019/01/10 9:4 a.m.5 views

jenkins: workspace browser allowed accessing files outside the workspace (SECURITY-904)

An information exposure vulnerability exists in Jenkins 2.153 and earlier, LTS 2.138.3 and earlier in DirectoryBrowserSupport.java that allows attackers with the ability to control build output to browse the file system on agents running builds beyond the duration of the build using the workspace...

4.3CVSS5.8AI score0.00184EPSS
Exploits0References4
CNVD
CNVDadded 2018/12/12 12:0 a.m.1 views

CloudBees Jenkins Information Disclosure Vulnerability (CNVD-2019-04442)

CloudBees Jenkins formerly known as Hudson Labs is the United States CloudBees company's set of Java-based development of continuous integration tools , it is mainly used to monitor the continuous software version of the release/testing project and some of the timed execution of the task . An...

4.3CVSS6.4AI score0.00184EPSS
Exploits0References1
Rows per page
Query Builder