Lucene search
K

262 matches found

Openbugbounty
Openbugbounty
added 2023/05/16 9:52 a.m.6 views

home-dry.ch Cross Site Scripting vulnerability OBB-3343425

Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...

6.1AI score
Exploits0
Fedora
Fedora
added 2023/05/16 1:29 a.m.30 views

[SECURITY] Fedora 37 Update: python-django3-3.2.19-1.fc37

Django is a high-level Python Web framework that encourages rapid development and a clean, pragmatic design. It focuses on automating as much as possible and adhering to the DRY Don't Repeat Yourself principle...

9.8CVSS7AI score0.0138EPSS
Exploits0
OpenVAS
OpenVAS
added 2023/05/12 12:0 a.m.19 views

Fedora: Security Advisory for python-django3 (FEDORA-2023-0d20d09f2d)

The remote host is missing an update for the SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.8CVSS9.6AI score0.0138EPSS
Exploits0References2
Fedora
Fedora
added 2023/05/11 2:6 a.m.36 views

[SECURITY] Fedora 38 Update: python-django3-3.2.19-1.fc38

Django is a high-level Python Web framework that encourages rapid development and a clean, pragmatic design. It focuses on automating as much as possible and adhering to the DRY Don't Repeat Yourself principle...

9.8CVSS6.4AI score0.0138EPSS
Exploits0
OpenVAS
OpenVAS
added 2023/04/29 12:0 a.m.33 views

Fedora: Security Advisory for python-django (FEDORA-2023-a53ab7c969)

The remote host is missing an update for the SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.8CVSS8.5AI score0.73274EPSS
Exploits6References2
Fedora
Fedora
added 2023/04/28 2:37 a.m.57 views

[SECURITY] Fedora 38 Update: python-django-4.0.10-1.fc38

Django is a high-level Python Web framework that encourages rapid development and a clean, pragmatic design. It focuses on automating as much as possible and adhering to the DRY Don't Repeat Yourself principle...

9.8CVSS8.9AI score0.73274EPSS
Exploits6
Fedora
Fedora
added 2023/04/28 2:4 a.m.49 views

[SECURITY] Fedora 37 Update: python-django-4.0.10-1.fc37

Django is a high-level Python Web framework that encourages rapid development and a clean, pragmatic design. It focuses on automating as much as possible and adhering to the DRY Don't Repeat Yourself principle...

9.8CVSS8.9AI score0.73274EPSS
Exploits6
Fedora
Fedora
added 2023/03/11 3:40 a.m.47 views

[SECURITY] Fedora 38 Update: python-django3-3.2.18-1.fc38

Django is a high-level Python Web framework that encourages rapid development and a clean, pragmatic design. It focuses on automating as much as possible and adhering to the DRY Don't Repeat Yourself principle...

7.5CVSS7.6AI score0.62575EPSS
Exploits0
Fedora
Fedora
added 2023/03/05 1:38 a.m.55 views

[SECURITY] Fedora 37 Update: python-django3-3.2.18-1.fc37

Django is a high-level Python Web framework that encourages rapid development and a clean, pragmatic design. It focuses on automating as much as possible and adhering to the DRY Don't Repeat Yourself principle...

7.5CVSS7.6AI score0.62575EPSS
Exploits0
Fedora
Fedora
added 2023/03/05 12:54 a.m.62 views

[SECURITY] Fedora 36 Update: python-django3-3.2.18-1.fc36

Django is a high-level Python Web framework that encourages rapid development and a clean, pragmatic design. It focuses on automating as much as possible and adhering to the DRY Don't Repeat Yourself principle...

7.5CVSS7.6AI score0.62575EPSS
Exploits0
SUSE CVE
SUSE CVE
added 2023/02/15 4:35 a.m.4 views

SUSE CVE-2017-1000103

The custom Details view of the Static Analysis Utilities based DRY Plugin, was vulnerable to a persisted cross-site scripting vulnerability: Malicious users able to influence the input to this plugin could insert arbitrary HTML into this view...

5.4CVSS6.2AI score0.00743EPSS
Exploits0References3
vulnersOsv
vulnersOsv
added 2022/05/17 12:29 a.m.4 views

org.jenkins-ci.plugins:php (=1.0) potentially affected by CVE-2017-1000103 via org.jvnet.hudson.plugins:dry (=2.33)

org.jvnet.hudson.plugins:dry MAVEN version =2.33 is affected by a known vulnerability. The following packages have a transitive dependency on org.jvnet.hudson.plugins:dry and may be impacted: - org.jenkins-ci.plugins:php =1.0 Source cves: CVE-2017-1000103 Source advisory: OSV:GHSA-63CJ-3R94-234V...

5.4CVSS6AI score0.00743EPSS
Exploits0
OSV
OSV
added 2022/05/17 12:29 a.m.7 views

GHSA-63CJ-3R94-234V Persistent XSS vulnerability in Jenkins DRY Plugin

The custom Details view of the Static Analysis Utilities based DRY Plugin, was vulnerable to a persisted cross-site scripting vulnerability: Malicious users able to influence the input to this plugin could insert arbitrary HTML into this view...

5.4CVSS5.2AI score0.00743EPSS
Exploits0References3
Github Security Blog
Github Security Blog
added 2022/05/17 12:29 a.m.16 views

Persistent XSS vulnerability in Jenkins DRY Plugin

The custom Details view of the Static Analysis Utilities based DRY Plugin, was vulnerable to a persisted cross-site scripting vulnerability: Malicious users able to influence the input to this plugin could insert arbitrary HTML into this view...

5.4CVSS6.1AI score0.00743EPSS
Exploits0References4Affected Software1
vulnersOsv
vulnersOsv
added 2022/05/14 3:46 a.m.5 views

org.jenkins-ci.plugins:php (=1.0) potentially affected by CVE-2018-1000010 via org.jvnet.hudson.plugins:dry (=2.33)

org.jvnet.hudson.plugins:dry MAVEN version =2.33 is affected by a known vulnerability. The following packages have a transitive dependency on org.jvnet.hudson.plugins:dry and may be impacted: - org.jenkins-ci.plugins:php =1.0 Source cves: CVE-2018-1000010 Source advisory: OSV:GHSA-X7QF-QH3R-MX22...

8.8CVSS7.2AI score0.00946EPSS
Exploits0
OSV
OSV
added 2022/05/14 3:46 a.m.10 views

GHSA-X7QF-QH3R-MX22 XXE vulnerability in Jenkins DRY Plugin

Jenkins DRY Plugin 2.49 and earlier processes XML external entities in files it parses as part of the build process, allowing attackers with user permissions in Jenkins to extract secrets from the Jenkins master, perform server-side request forgery, or denial-of-service attacks...

8.8CVSS8.7AI score0.00946EPSS
Exploits0References2
Github Security Blog
Github Security Blog
added 2022/05/14 3:46 a.m.16 views

XXE vulnerability in Jenkins DRY Plugin

Jenkins DRY Plugin 2.49 and earlier processes XML external entities in files it parses as part of the build process, allowing attackers with user permissions in Jenkins to extract secrets from the Jenkins master, perform server-side request forgery, or denial-of-service attacks...

8.8CVSS6.7AI score0.00946EPSS
Exploits0References3Affected Software1
vulnersOsv
vulnersOsv
added 2022/05/13 1:45 a.m.5 views

ai.databand.azkaban:azkaban-common (=3.18.0), ai.databand.azkaban:azkaban-exec-server (=3.18.0) +2384 more potentially affected by CVE-2017-3523 via mysql:mysql-connector-java (>=3.0.10 <=5.1.40)

mysql:mysql-connector-java MAVEN version =3.0.10, =1.0.0, =1.1.5.RELEASE, =1.0.1, =0.0.1, =0.3.0, =0.2.0, =0.2.0, =0.4.1 and more Source cves: CVE-2017-3523 Source advisory: OSV:GHSA-2XXH-F8R3-HVVR...

8.5CVSS7.2AI score0.02877EPSS
Exploits0
Gitee
Gitee
added 2022/02/13 5:32 p.m.10 views

Exploit for Out-of-bounds Write in Polkit_Project Polkit

This repository is a proof-of-concept PoC exploit for CVE-2021-4034, a vulnerability in the polkit privilege escalation exploit. The exploit is implemented in C and uses the execve system call to execute a shell with elevated privileges. The vulnerability is related to the way polkit handles user...

7.8CVSS8AI score0.94921EPSS
Exploits152
Fedora
Fedora
added 2022/02/11 1:23 a.m.44 views

[SECURITY] Fedora 35 Update: python-django-3.2.12-1.fc35

Django is a high-level Python Web framework that encourages rapid development and a clean, pragmatic design. It focuses on automating as much as possible and adhering to the DRY Don't Repeat Yourself principle...

7.5CVSS1.6AI score0.49246EPSS
Exploits1
Rows per page
Query Builder