Lucene search
K

6 matches found

FreeBSD
FreeBSD
added 2025/12/10 12:0 a.m.8 views

jenkins -- multiple vulnerabilities

Jenkins Security Advisory: Description High SECURITY-3630 / CVE-2025-67635 Denial of service vulnerability in HTTP-based CLI Medium SECURITY-1809 / CVE-2025-67636 Missing permission check on password fields Medium SECURITY-783 / CVE-2025-67637 storage, CVE-2025-67638 masking Build authorization...

7.5CVSS7AI score0.00506EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/23 8:38 a.m.5 views

CVE-2024-32882

Wagtail is an open source content management system built on Django. In affected versions if a model has been made available for editing through the wagtail.contrib.settings module or ModelViewSet, and the permission argument on FieldPanel has been used to further restrict access to one or more...

2.7CVSS6.6AI score0.00479EPSS
Exploits0References1
NVD
NVD
added 2024/05/02 7:15 a.m.28 views

CVE-2024-32882

Wagtail is an open source content management system built on Django. In affected versions if a model has been made available for editing through the wagtail.contrib.settings module or ModelViewSet, and the permission argument on FieldPanel has been used to further restrict access to one or more...

2.7CVSS3.7AI score0.00479EPSS
Exploits0References5
NVD
NVD
added 2012/12/26 5:55 p.m.22 views

CVE-2012-5588

The Email Field module 6.x-1.x before 6.x-1.3 for Drupal, when using a field permission module and the field contact field formatter is set to the full or teaser display mode, does not properly check permissions, which allows remote attackers to email the stored address via unspecified vectors...

2.6CVSS6.5AI score0.01162EPSS
Exploits0References3
Prion
Prion
added 2012/12/26 5:55 p.m.16 views

Code injection

The Email Field module 6.x-1.x before 6.x-1.3 for Drupal, when using a field permission module and the field contact field formatter is set to the full or teaser display mode, does not properly check permissions, which allows remote attackers to email the stored address via unspecified vectors...

2.6CVSS7AI score0.01162EPSS
Exploits0References3Affected Software1
CVE
CVE
added 2012/12/26 5:0 p.m.43 views

CVE-2012-5588

The CVE-2012-5588 entry concerns the Drupal Email Field module (6.x-1.x) before 6.x-1.3. When used with a field-permission module and the contact field formatter set to full or teaser, it fails to properly check permissions, potentially allowing remote attackers to email the stored address throug...

2.6CVSS6.7AI score0.01162EPSS
Exploits0References3Affected Software1
Rows per page
Query Builder