Lucene search
K

12 matches found

EUVD
EUVD
added 2025/10/03 8:7 p.m.5 views

EUVD-2022-5152

Malicious code in bioql PyPI...

6.5CVSS6.5AI score0.01486EPSS
Exploits0References4
EUVD
EUVD
added 2025/10/03 8:7 p.m.5 views

EUVD-2022-5572

Malicious code in bioql PyPI...

6.5CVSS6.5AI score0.01296EPSS
Exploits0References4
RedhatCVE
RedhatCVE
added 2025/05/22 7:40 a.m.13 views

CVE-2019-1003059

A missing permission check in Jenkins FTP publisher Plugin in the FTPPublisher.DescriptorImpldoLoginCheck method allows attackers with Overall/Read permission to initiate a connection to an attacker-specified server...

6.5CVSS6.5AI score0.01486EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/22 7:40 a.m.10 views

CVE-2019-1003058

A cross-site request forgery vulnerability in Jenkins FTP publisher Plugin in the FTPPublisher.DescriptorImpldoLoginCheck method allows attackers to initiate a connection to an attacker-specified server...

6.5CVSS6.6AI score0.01296EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/22 7:40 a.m.9 views

CVE-2019-1003055

Jenkins FTP publisher Plugin stores credentials unencrypted in its global configuration file on the Jenkins master where they can be viewed by users with access to the master file system...

8.8CVSS6.7AI score0.01365EPSS
Exploits0References1
OSV
OSV
added 2022/05/13 1:17 a.m.15 views

GHSA-RCRV-6R7R-RR7M Missing permission check in Jenkins FTP publisher Plugin

A missing permission check in Jenkins FTP publisher Plugin in the FTPPublisher.DescriptorImpldoLoginCheck method allows attackers with Overall/Read permission to initiate a connection to an attacker-specified server...

6.5CVSS6.2AI score0.01486EPSS
Exploits0References4
OSV
OSV
added 2022/05/13 1:17 a.m.18 views

GHSA-CWQV-4CF2-5VFJ Jenkins FTP publisher Plugin stores credentials in plain text

Jenkins FTP publisher Plugin stores credentials unencrypted in its global configuration file com.zanox.hudson.plugins.FTPPublisher.xml on the Jenkins controller. These credentials can be viewed by users with access to the Jenkins controller file system...

3.3CVSS8.7AI score0.01365EPSS
Exploits0References3
CNVD
CNVD
added 2019/10/14 12:0 a.m.4 views

CloudBees Jenkins FTP publisher Plugin Trust Management Issue Vulnerability

CloudBees Jenkins Hudson Labs is the United States CloudBees company's set of Java-based development of continuous integration tools. The product is mainly used to monitor the continuous software version of the release/testing project and some timed tasks . FTP publisher Plugin is used in one of...

8.8CVSS6.9AI score0.01365EPSS
Exploits0References1
CNVD
CNVD
added 2019/04/11 12:0 a.m.3 views

CloudBees Jenkins FTP publisher Plugin Cross-Site Request Forgery Vulnerability

CloudBees Jenkins Hudson Labs is the United States CloudBees company's set of Java-based development of continuous integration tools. The product is mainly used to monitor the continuous software version of the release/testing project and some timed tasks . FTP publisher Plugin is used in one of...

6.5CVSS6.8AI score0.01296EPSS
Exploits0References1
CVE
CVE
added 2019/04/04 3:38 p.m.69 views

CVE-2019-1003058

CVE-2019-1003058 describes a Cross-Site Request Forgery vulnerability in the Jenkins FTP Publisher Plugin, specifically in FTPPublisher.DescriptorImpl#doLoginCheck. The flaw allows an attacker to induce the Jenkins server to initiate a connection to an attacker-specified server. The linked connec...

6.5CVSS6.3AI score0.01296EPSS
Exploits0References3Affected Software1
CVE
CVE
added 2019/04/04 3:38 p.m.64 views

CVE-2019-1003059

The CVE-2019-1003059 entry concerns Jenkins FTP Publisher Plugin. The vulnerability is a missing permission check in FTPPublisher.DescriptorImpl#doLoginCheck, which allows attackers with Overall/Read permission to initiate a connection to an attacker-specified server. Affected component is the Je...

6.5CVSS6.2AI score0.01486EPSS
Exploits0References3Affected Software1
Positive Technologies
Positive Technologies
added 2019/04/04 12:0 a.m.5 views

PT-2019-11345 · Jenkins · Jenkins Ftp Publisher Plugin

Name of the Vulnerable Software and Affected Versions: Jenkins FTP publisher Plugin affected versions not specified Description: The issue concerns the storage of credentials in an unencrypted manner within the global configuration file on the Jenkins master or controller. Specifically, the...

8.8CVSS8.5AI score0.01365EPSS
Exploits0References5
Rows per page
Query Builder