Lucene search
K

9 matches found

EUVD
EUVD
added 2025/10/03 8:7 p.m.7 views

EUVD-2022-4166

Malicious code in bioql PyPI...

4.3CVSS5.1AI score0.00647EPSS
Exploits0References4
EUVD
EUVD
added 2025/10/03 8:7 p.m.23 views

EUVD-2022-5499

Malicious code in bioql PyPI...

6.5CVSS6.6AI score0.00798EPSS
Exploits0References3
RedhatCVE
RedhatCVE
added 2025/05/22 11:0 p.m.10 views

CVE-2022-34787

Jenkins Project Inheritance Plugin 21.04.03 and earlier does not escape the reason a build is blocked in tooltips, resulting in a cross-site scripting XSS vulnerability exploitable by attackers able to control the reason a queue item is blocked...

5.4CVSS5.6AI score0.00567EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/22 10:24 a.m.13 views

CVE-2019-10407

Jenkins Project Inheritance Plugin 2.0.0 and earlier displayed a list of environment variables passed to a build without masking sensitive variables contributed by the Mask Passwords Plugin...

6.5CVSS6.6AI score0.01186EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/22 8:21 a.m.25 views

CVE-2019-10408

A cross-site request forgery vulnerability in Jenkins Project Inheritance Plugin 2.0.0 and earlier allowed attackers to trigger project generation from templates...

4.3CVSS6.6AI score0.00606EPSS
Exploits0References1
Github Security Blog
Github Security Blog
added 2022/05/24 4:56 p.m.25 views

Jenkins Project Inheritance Plugin vulnerable to Cross-Site Request Forgery

Project Inheritance Plugin allows the creation of projects based on templates defined in the plugin configuration. A missing permission check in the HTTP endpoint triggering project creation allowed users with Overall/Read permission to create these projects. Additionally, the HTTP endpoint did n...

4.3CVSS0.4AI score0.00606EPSS
Exploits0References4Affected Software1
Prion
Prion
added 2020/06/03 1:15 p.m.22 views

Format string

Jenkins Project Inheritance Plugin 19.08.02 and earlier does not require users to have Job/ExtendedRead permission to access Inheritance Project job configurations in XML format...

4CVSS4.5AI score0.00647EPSS
Exploits0References2Affected Software1
OSV
OSV
added 2019/09/25 4:15 p.m.5 views

CVE-2019-10407

Jenkins Project Inheritance Plugin 2.0.0 and earlier displayed a list of environment variables passed to a build without masking sensitive variables contributed by the Mask Passwords Plugin...

6.5CVSS6.6AI score
Exploits0References2
CVE
CVE
added 2019/09/25 3:5 p.m.69 views

CVE-2019-10408

The CVE refers to Jenkins Project Inheritance Plugin (2.0.0 and earlier) with a CSRF vulnerability caused by a missing permission check in the HTTP endpoint that triggers project creation from templates. This allowed users, potentially with limited access, to trigger project generation without pr...

4.3CVSS4.5AI score0.00606EPSS
Exploits0References2Affected Software1
Rows per page
Query Builder