CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

12 matches found

EUVD•added 2025/10/03 8:7 p.m.•2 views

EUVD-2022-7277

Malicious code in bioql PyPI...

9.8CVSS9AI score0.03285EPSS

Exploits0References4

RedhatCVE•added 2025/05/23 12:17 a.m.•4 views

CVE-2022-45400

Jenkins JAPEX Plugin 1.7 and earlier does not configure its XML parser to prevent XML external entity XXE attacks...

9.8CVSS6.7AI score0.03285EPSS

Exploits0References1

Github Security Blog•added 2022/11/16 12:0 p.m.•18 views

XXE vulnerability in Jenkins JAPEX Plugin

JAPEX Plugin 1.7 and earlier does not configure its XML parser to prevent XML external entity XXE attacks. This allows attackers able to control XML input files for the 'Record Japex test report' post-build step to have Jenkins parse a crafted file that uses external entities for extraction of...

9.8CVSS8.8AI score0.03285EPSS

Exploits0References4Affected Software1

OSV•added 2022/11/16 12:0 p.m.•23 views

GHSA-8538-25V4-25PG XXE vulnerability in Jenkins JAPEX Plugin

7.1CVSS9.4AI score0.03285EPSS

Exploits0References4

NVD•added 2022/11/15 8:15 p.m.•13 views

CVE-2022-45400

Jenkins JAPEX Plugin 1.7 and earlier does not configure its XML parser to prevent XML external entity XXE attacks...

9.8CVSS0.03285EPSS

Exploits0References2

OSV•added 2022/11/15 8:15 p.m.•0 views

CVE-2022-45400

Jenkins JAPEX Plugin 1.7 and earlier does not configure its XML parser to prevent XML external entity XXE attacks...

9.8CVSS5.8AI score

Exploits0References2

Prion•added 2022/11/15 8:15 p.m.•13 views

Xxe

Jenkins JAPEX Plugin 1.7 and earlier does not configure its XML parser to prevent XML external entity XXE attacks...

7.5CVSS9.4AI score0.03285EPSS

Exploits0References2Affected Software1

Positive Technologies•added 2022/11/15 12:0 a.m.•1 views

PT-2022-27502 · Jenkins · Jenkins Japex Plugin +1

Name of the Vulnerable Software and Affected Versions: Jenkins JAPEX Plugin versions 1.7 and earlier Description: The issue is related to the XML parser not being configured to prevent XML external entity XXE attacks. This allows attackers who can control XML input files for the 'Record Japex tes...

9.8CVSS9.1AI score0.03285EPSS

Exploits0References6

CVE•added 2022/11/15 12:0 a.m.•263 views

CVE-2022-45400

Jenkins JAPEX Plugin (versions 1.7 and earlier) is vulnerable to an XML External Entity (XXE) attack because it does not configure its XML parser to prevent XXE. This is documented across multiple sources (CVE-2022-45400; GHSA-8538-25V4-25PG; NVD entry). The root cause is improper parser configur...

9.8CVSS9.4AI score0.03285EPSS

Exploits0References2Affected Software1

CNNVD•added 2022/11/15 12:0 a.m.•1 views

Jenkins Plugin JAPEX 代码问题漏洞

Jenkins and Jenkins Plugin are both Jenkins open source products.Jenkins is a software application . An open source automation server Jenkins provides hundreds of plugins to support building, deploying, and automating any project.Jenkins Plugin is a software application. A code issue vulnerabilit...

9.8CVSS8.3AI score0.03285EPSS

Exploits0References6