6 matches found
EUVD-2000-1229
Malware in sbrugna...
EUVD-2021-26752
Malware in sbrugna...
CVE-2022-27216
Jenkins dbCharts Plugin 0.5.2 and earlier stores JDBC connection passwords unencrypted in its global configuration file on the Jenkins controller where they can be viewed by users with access to the Jenkins controller file system...
PT-2022-18304 · Jenkins · Jenkins Dbcharts Plugin +1
Name of the Vulnerable Software and Affected Versions: Jenkins dbCharts Plugin versions 0.5.2 and earlier Description: The issue concerns the storage of JDBC connection passwords in the global configuration file on the Jenkins controller. These passwords are stored unencrypted and can be viewed b...
Dell OpenManage Enterprise Hardcoded Credentails / Privilege Escalation / Deserialization
Dell OpenManage Enterprise versions up to 3.6.1 suffer from multiple hard-coded credential issues, multiple privilege escalation, weak permissions, authentication bypass, and other vulnerabilities. Please find a text-only version below sent to security mailing lists. The complete version on...
CVE-2000-1247
The CVE affects Apache JServ 1.1.2, specifically the jserv-status handler in jserv.conf. Its default configuration includes an allow from 127.0.0.1 line, allowing local users to access the jserv/ URI and disclose JDBC passwords or other sensitive information. The available documents do not specif...