22 matches found
EUVD-2025-17299
Malicious code in bioql PyPI...
EUVD-2022-4216
Malicious code in bioql PyPI...
CVE-2025-5806
Jenkins Gatling Plugin 136.vb9009b3d33ae serves Gatling reports in a manner that bypasses the Content-Security-Policy protection introduced in Jenkins 1.641 and 1.625, resulting in a cross-site scripting XSS vulnerability exploitable by users able to change report content...
Jenkins Gatling Plugin Vulnerable to Cross-Site Scripting (XSS)
Jenkins Gatling Plugin 136.vb9009b3d33ae serves Gatling reports in a manner that bypasses the Content-Security-Policy protection introduced in Jenkins 1.641 and 1.625, resulting in a cross-site scripting XSS vulnerability exploitable by users able to change report content...
CVE-2025-5806
Jenkins Gatling Plugin 136.vb9009b3d33ae serves Gatling reports in a manner that bypasses the Content-Security-Policy protection introduced in Jenkins 1.641 and 1.625, resulting in a cross-site scripting XSS vulnerability exploitable by users able to change report content...
CVE-2025-5806
Jenkins Gatling Plugin 136.vb9009b3d33ae serves Gatling reports in a manner that bypasses the Content-Security-Policy protection introduced in Jenkins 1.641 and 1.625, resulting in a cross-site scripting XSS vulnerability exploitable by users able to change report content...
CVE-2025-5806
Jenkins Gatling Plugin 136.vb9009b3d33ae serves Gatling reports in a manner that bypasses the Content-Security-Policy protection introduced in Jenkins 1.641 and 1.625, resulting in a cross-site scripting XSS vulnerability exploitable by users able to change report content...
CVE-2025-5806
Jenkins Gatling Plugin 136.vb9009b3d33ae serves Gatling reports in a manner that bypasses the Content-Security-Policy protection introduced in Jenkins 1.641 and 1.625, resulting in a cross-site scripting XSS vulnerability exploitable by users able to change report content...
CVE-2025-5806
Jenkins Gatling Plugin 136.vb9009b3d33ae serves Gatling reports in a manner that bypasses the Content-Security-Policy protection introduced in Jenkins 1.641 and 1.625, resulting in a cross-site scripting XSS vulnerability exploitable by users able to change report content...
CVE-2025-5806
CVE-2025-5806 affects Jenkins Gatling Plugin 136.vb_9009b_3d33a_e. The vulnerability arises from serving Gatling reports in a way that bypasses CSP protections added in Jenkins 1.641/1.625, enabling cross-site scripting (XSS) exploitable by users who can change report content. CVSSv3.1 base score...
Jenkins Gatling Plugin 安全漏洞
Jenkins and Jenkins plugin are both Jenkins open source products.Jenkins is an application software. An open source automation server Jenkins provides hundreds of plugins to support building, deploying and automating any project.Jenkins plugin is an application software plugin. A security...
Jenkins plugin (2025-06-06)
According to its self-reported version number, the version of Jenkins plugins running on the remote web server is affected by a vulnerability: - Jenkins Gatling Plugin 136.vb9009b3d33ae serves Gatling reports in a manner that bypasses the Content- Security-Policy protection introduced in Jenkins...
PT-2025-24276 · Jenkins · Jenkins Gatling Plugin
Name of the Vulnerable Software and Affected Versions: Jenkins Gatling Plugin version 136.vb 9009b 3d33a e Description: The issue allows users who can change report content to exploit a cross-site scripting XSS vulnerability due to the manner in which Gatling reports are served, bypassing the...
CVE-2020-2173
Jenkins Gatling Plugin 1.2.7 and earlier prevents Content-Security-Policy headers from being set for Gatling reports served by the plugin, resulting in an XSS vulnerability exploitable by users able to change report content...
XSS vulnerability in Jenkins Gatling Plugin
Gatling Plugin 1.2.7 and earlier serves Gatling reports in a manner that bypasses the Content-Security-Policy protection introduced in Jenkins 1.641 and 1.625.3. This results in a cross-site scripting XSS vulnerability exploitable by users able to change report content. Gatling Plugin 1.3.0 no...
GHSA-HV53-QJG6-5PM9 XSS vulnerability in Jenkins Gatling Plugin
Gatling Plugin 1.2.7 and earlier serves Gatling reports in a manner that bypasses the Content-Security-Policy protection introduced in Jenkins 1.641 and 1.625.3. This results in a cross-site scripting XSS vulnerability exploitable by users able to change report content. Gatling Plugin 1.3.0 no...
CloudBees Jenkins Gatling Plugin Cross-Site Scripting Vulnerability
CloudBees Jenkins Hudson Labs is the United States CloudBees company a set of Java-based development of continuous integration tools . The product is mainly used to monitor the continuous software version release/testing project and some timed execution of the task . A cross-site scripting...
CVE-2020-2173
Jenkins Gatling Plugin 1.2.7 and earlier prevents Content-Security-Policy headers from being set for Gatling reports served by the plugin, resulting in an XSS vulnerability exploitable by users able to change report content...
CVE-2020-2173
Jenkins Gatling Plugin 1.2.7 and earlier prevents Content-Security-Policy headers from being set for Gatling reports served by the plugin, resulting in an XSS vulnerability exploitable by users able to change report content...
Cross site scripting
Jenkins Gatling Plugin 1.2.7 and earlier prevents Content-Security-Policy headers from being set for Gatling reports served by the plugin, resulting in an XSS vulnerability exploitable by users able to change report content...