Lucene search
K

7 matches found

RedhatCVE
RedhatCVE
added 2025/05/23 12:22 a.m.10 views

CVE-2022-46685

In Jenkins Gitea Plugin 1.4.4 and earlier, the implementation of Gitea personal access tokens did not support credentials masking, potentially exposing them through the build log...

4.3CVSS6.8AI score0.00332EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/22 7:19 a.m.15 views

CVE-2019-10330

Jenkins Gitea Plugin 1.1.1 and earlier did not implement trusted revisions, allowing attackers without commit access to the Git repo to change Jenkinsfiles even if Jenkins is configured to consider them to be untrusted...

7.5CVSS6.7AI score0.02135EPSS
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2023/07/31 12:0 a.m.35 views

Jenkins plugins Multiple Vulnerabilities (2022-12-07)

According to their self-reported version numbers, the version of Jenkins plugins running on the remote web server are affected by multiple vulnerabilities: - Jenkins Plot Plugin 2.1.11 and earlier does not configure its XML parser to prevent XML external entity XXE attacks. CVE-2022-46682 - Jenki...

9.8CVSS6AI score0.00947EPSS
Exploits0References8
Vulnrichment
Vulnrichment
added 2022/12/07 12:0 a.m.10 views

CVE-2022-46685

In Jenkins Gitea Plugin 1.4.4 and earlier, the implementation of Gitea personal access tokens did not support credentials masking, potentially exposing them through the build log...

6.7AI score0.00332EPSS
Exploits0References1
CNNVD
CNNVD
added 2022/12/07 12:0 a.m.42 views

Jenkins Gitea Plugin 安全漏洞

Jenkins and Jenkins Plugin are both Jenkins open source products.Jenkins is a software application . An open source automation server Jenkins provides hundreds of plugins to support building, deploying, and automating any project.Jenkins Plugin is a software application. A security vulnerability...

4.3CVSS5.1AI score0.00332EPSS
Exploits0References3
Prion
Prion
added 2019/05/31 3:29 p.m.13 views

Code injection

Jenkins Gitea Plugin 1.1.1 and earlier did not implement trusted revisions, allowing attackers without commit access to the Git repo to change Jenkinsfiles even if Jenkins is configured to consider them to be untrusted...

5CVSS7.5AI score0.02135EPSS
Exploits0References3Affected Software1
OSV
OSV
added 2019/05/31 3:29 p.m.25 views

CVE-2019-10330

Jenkins Gitea Plugin 1.1.1 and earlier did not implement trusted revisions, allowing attackers without commit access to the Git repo to change Jenkinsfiles even if Jenkins is configured to consider them to be untrusted...

7.5CVSS6.7AI score
Exploits0References3
Rows per page
Query Builder