Lucene search
K

9 matches found

EUVD
EUVD
added 2025/10/03 8:7 p.m.6 views

EUVD-2022-2338

Malicious code in bioql PyPI...

5.4CVSS5.5AI score0.0939EPSS
Exploits0References5
RedhatCVE
RedhatCVE
added 2025/05/22 9:30 p.m.10 views

CVE-2021-21619

Jenkins Claim Plugin 2.18.1 and earlier does not escape the user display name, resulting in a stored cross-site scripting XSS vulnerability exploitable by attackers who are able to control the display names of Jenkins users, either via the security realm, or directly inside Jenkins...

5.4CVSS5.5AI score0.0939EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/22 7:11 p.m.13 views

CVE-2021-21620

A cross-site request forgery CSRF vulnerability in Jenkins Claim Plugin 2.18.1 and earlier allows attackers to change claims...

4.3CVSS6.7AI score0.01635EPSS
Exploits0References1
OSV
OSV
added 2022/05/24 5:43 p.m.23 views

GHSA-48HR-JG4P-W4P4 XSS vulnerability in Jenkins Claim Plugin

Jenkins Claim Plugin 2.18.1 and earlier does not escape the user display name shown in claims. This results in a stored cross-site scripting XSS vulnerability exploitable by attackers who are able to control the display names of Jenkins users, either via the security realm, or directly inside...

5.4CVSS5.5AI score0.0939EPSS
Exploits0References4
CNVD
CNVD
added 2021/02/26 12:0 a.m.8 views

CloudBees Jenkins Claim Plugin Cross-Site Scripting Vulnerability

Jenkins Claim is an open source application plugin for Jenkins. Provides users to declare failed builds and tests from Jenkins to show that they are responsible for fixing them . A cross-site script execution vulnerability exists in Jenkins Claim Plugin version 2.18.1 and earlier. The vulnerabili...

5.4CVSS5.9AI score0.0939EPSS
Exploits0References1
CNVD
CNVD
added 2021/02/26 12:0 a.m.10 views

CloudBees Jenkins Claim Plugin Cross-Site Request Forgery Vulnerability

Jenkins Claim is a Jenkins open source application plug-in . A cross-site request forgery vulnerability exists in Jenkins Claim Plugin version 2.18.1 and earlier. The vulnerability stems from the program not making a POST request to the form submission endpoint of the assigned claim. An attacker...

4.3CVSS6.4AI score0.01635EPSS
Exploits0References1
OSV
OSV
added 2021/02/24 4:15 p.m.18 views

CVE-2021-21620

A cross-site request forgery CSRF vulnerability in Jenkins Claim Plugin 2.18.1 and earlier allows attackers to change claims...

4.3CVSS6.7AI score
Exploits0References1
CNNVD
CNNVD
added 2021/02/24 12:0 a.m.8 views

Jenkins Claim Plugin 跨站脚本漏洞

Jenkins Claim is an open source application plugin for Jenkins. Provides users to declare failed builds and tests from Jenkins to show that they are responsible for fixing them . A cross-site script execution vulnerability exists in Jenkins Claim Plugin version 2.18.1 and earlier. The vulnerabili...

5.4CVSS6AI score0.0939EPSS
Exploits0References5
Positive Technologies
Positive Technologies
added 2021/02/24 12:0 a.m.4 views

PT-2021-14663 · Jenkins · Jenkins Claim Plugin +1

Name of the Vulnerable Software and Affected Versions: Jenkins Claim Plugin versions 2.18.1 and earlier Description: A cross-site request forgery CSRF vulnerability allows attackers to change claims. This issue arises because the form submission endpoint for assigning claims does not require POST...

4.3CVSS4.5AI score0.01635EPSS
Exploits0References8
Rows per page
Query Builder