Lucene search
K

34 matches found

OSV
OSV
added 2025/12/08 10:9 p.m.10 views

CLSA-2025-1765231763 golang: Fix of 3 CVEs

Update to Go 1.22.9 - Remove CVE-2024-34155, CVE-2024-34156, and CVE-2024-34158 patches - Remove fix-standard-crypto-panic.patch no longer needed - Add disablestatictestspart1.patch and disablestatictestspart2.patch to disable OpenSSL backend for static builds - Add...

7.5CVSS6.8AI score0.01127EPSS
Exploits0References1
OSV
OSV
added 2025/11/06 9:2 a.m.6 views

CLSA-2025-1762419767 Fix CVE(s): CVE-2022-3296

SECURITY UPDATE: Stack-based Buffer Overflow with unexpected :finally - debian/patches/CVE-2022-3296.patch: check CSFTRY can be found - CVE-2022-3296 Fix Testterminalnoblock - debian/patches/fix-flaky-terminal-noblock-test.patch...

7.8CVSS5.8AI score0.00528EPSS
Exploits1References1
EUVD
EUVD
added 2025/10/03 8:7 p.m.6 views

EUVD-2022-1542

Malicious code in bioql PyPI...

8.1CVSS8AI score0.00972EPSS
Exploits0References6
RedhatCVE
RedhatCVE
added 2025/05/22 10:41 p.m.10 views

CVE-2022-28140

Jenkins Flaky Test Handler Plugin 1.2.1 and earlier does not configure its XML parser to prevent XML external entity XXE attacks...

8.1CVSS6.7AI score0.00972EPSS
Exploits0References1
OSV
OSV
added 2023/08/16 3:30 p.m.18 views

GHSA-HV48-HGP6-XPQF Jenkins Flaky Test Handler Plugin stored cross-site scripting vulnerability

Jenkins Flaky Test Handler Plugin 1.2.2 and earlier does not escape JUnit test contents when showing them on the Jenkins UI. This results in a stored cross-site scripting XSS vulnerability exploitable by attackers able to control JUnit report file contents. Flaky Test Handler Plugin 1.2.3 escapes...

8CVSS5.4AI score0.00521EPSS
Exploits0References3
Github Security Blog
Github Security Blog
added 2023/08/16 3:30 p.m.29 views

Jenkins Flaky Test Handler Plugin stored cross-site scripting vulnerability

Jenkins Flaky Test Handler Plugin 1.2.2 and earlier does not escape JUnit test contents when showing them on the Jenkins UI. This results in a stored cross-site scripting XSS vulnerability exploitable by attackers able to control JUnit report file contents. Flaky Test Handler Plugin 1.2.3 escapes...

5.4CVSS5.6AI score0.00521EPSS
Exploits0References4Affected Software1
NVD
NVD
added 2023/08/16 3:15 p.m.27 views

CVE-2023-40342

Jenkins Flaky Test Handler Plugin 1.2.2 and earlier does not escape JUnit test contents when showing them on the Jenkins UI, resulting in a stored cross-site scripting XSS vulnerability exploitable by attackers able to control JUnit report file contents...

5.4CVSS5.2AI score0.00521EPSS
Exploits0References2
OSV
OSV
added 2023/08/16 3:15 p.m.24 views

CVE-2023-40342

Jenkins Flaky Test Handler Plugin 1.2.2 and earlier does not escape JUnit test contents when showing them on the Jenkins UI, resulting in a stored cross-site scripting XSS vulnerability exploitable by attackers able to control JUnit report file contents...

5.4CVSS5.6AI score
Exploits0References2
Prion
Prion
added 2023/08/16 3:15 p.m.23 views

Cross site scripting

Jenkins Flaky Test Handler Plugin 1.2.2 and earlier does not escape JUnit test contents when showing them on the Jenkins UI, resulting in a stored cross-site scripting XSS vulnerability exploitable by attackers able to control JUnit report file contents...

4.9CVSS5.2AI score0.00521EPSS
Exploits0References2Affected Software1
Vulnrichment
Vulnrichment
added 2023/08/16 2:32 p.m.11 views

CVE-2023-40342

Jenkins Flaky Test Handler Plugin 1.2.2 and earlier does not escape JUnit test contents when showing them on the Jenkins UI, resulting in a stored cross-site scripting XSS vulnerability exploitable by attackers able to control JUnit report file contents...

5.7AI score0.00521EPSS
Exploits0References2
Cvelist
Cvelist
added 2023/08/16 2:32 p.m.30 views

CVE-2023-40342

Jenkins Flaky Test Handler Plugin 1.2.2 and earlier does not escape JUnit test contents when showing them on the Jenkins UI, resulting in a stored cross-site scripting XSS vulnerability exploitable by attackers able to control JUnit report file contents...

5.7AI score0.00521EPSS
Exploits0References2
CVE
CVE
added 2023/08/16 2:32 p.m.255 views

CVE-2023-40342

CVE-2023-40342 affects the Jenkins Flaky Test Handler Plugin (versions 1.2.2 and earlier). The vulnerability arises because the plugin does not escape JUnit test contents when displaying results in the Jenkins UI, leading to a stored cross-site scripting (XSS) flaw that can be triggered by an att...

5.4CVSS5.2AI score0.00521EPSS
Exploits0References2Affected Software1
CNNVD
CNNVD
added 2023/08/16 12:0 a.m.5 views

Jenkins Plugin Flaky Test Handler 跨站脚本漏洞

Jenkins and Jenkins Plugin are both Jenkins open source products.Jenkins is a software application . An open source automation server Jenkins provides hundreds of plugins to support building, deploying, and automating any project.Jenkins Plugin is a software application. A cross-site scripting...

5.4CVSS5.4AI score0.00521EPSS
Exploits0References5
OSV
OSV
added 2022/05/24 5:25 p.m.24 views

GHSA-VJF8-XW6C-WJHQ CSRF vulnerability in Jenkins Flaky Test Handler Plugin

Flaky Test Handler Plugin 1.0.4 and earlier does not require POST requests for the "Deflake this build" feature, resulting in a cross-site request forgery CSRF vulnerability. This vulnerability allows attackers to rebuild a project at a previous git revision where the tests were failing...

4.3CVSS4.5AI score0.00679EPSS
Exploits0References4
Github Security Blog
Github Security Blog
added 2022/05/24 5:25 p.m.31 views

CSRF vulnerability in Jenkins Flaky Test Handler Plugin

Flaky Test Handler Plugin 1.0.4 and earlier does not require POST requests for the "Deflake this build" feature, resulting in a cross-site request forgery CSRF vulnerability. This vulnerability allows attackers to rebuild a project at a previous git revision where the tests were failing...

4.3CVSS5AI score0.00679EPSS
Exploits0References4Affected Software1
CNVD
CNVD
added 2022/03/31 12:0 a.m.22 views

Jenkins Flaky Test Handler Plugin XML External Entity Injection Vulnerability

Jenkins and Jenkins Plugin are both Jenkins open source products. jenkins is an application. An open source automation server, Jenkins provides hundreds of plugins to support building, deploying, and automating any project. jenkins Plugin is an application. jenkins Flaky Test Handler Plugin 1.2.1...

8.1CVSS2.3AI score0.00972EPSS
Exploits0References1
OSV
OSV
added 2022/03/30 12:0 a.m.19 views

GHSA-V4RR-65X6-G69F XXE vulnerability in Jenkins Flaky Test Handler Plugin

Jenkins Flaky Test Handler Plugin 1.2.1 and earlier does not configure its XML parser to prevent XML external entity XXE attacks...

8.1CVSS8AI score0.00972EPSS
Exploits0References5
Github Security Blog
Github Security Blog
added 2022/03/30 12:0 a.m.28 views

XXE vulnerability in Jenkins Flaky Test Handler Plugin

Jenkins Flaky Test Handler Plugin 1.2.1 and earlier does not configure its XML parser to prevent XML external entity XXE attacks...

8.1CVSS2.9AI score0.00972EPSS
Exploits0References5Affected Software1
ATTACKERKB
ATTACKERKB
added 2022/03/29 1:15 p.m.1 views

CVE-2022-28140

Jenkins Flaky Test Handler Plugin 1.2.1 and earlier does not configure its XML parser to prevent XML external entity XXE attacks...

8.1CVSS5.9AI score0.00972EPSS
Exploits0References3
NVD
NVD
added 2022/03/29 1:15 p.m.13 views

CVE-2022-28140

Jenkins Flaky Test Handler Plugin 1.2.1 and earlier does not configure its XML parser to prevent XML external entity XXE attacks...

8.1CVSS0.00972EPSS
Exploits0References2
Rows per page
Query Builder