40 matches found
CVE-2026-34099
Guardian language-system passes the id GET parameter directly into an unsanitized SQL query in jobinfo.php line 16: SELECT FROM jobs where id = '".$GET'id'."'. No authentication is required. An unauthenticated attacker can perform error-based SQL injection to extract the database version, current...
CVE-2023-40348
The webhook endpoint in Jenkins Gogs Plugin 1.0.15 and earlier provides unauthenticated attackers information about the existence of jobs in its output...
CVE-2019-7549
An issue was discovered in GitLab Community and Enterprise Edition 10.x and 11.x before 11.5.10, 11.6.x before 11.6.8, and 11.7.x before 11.7.3. It has Incorrect Access Control. The GitLab pipelines feature is vulnerable to authorization issues that allow unauthorized users to view job informatio...
EUVD-2019-17088
Malware in sbrugna...
EUVD-2002-0278
Malware in sbrugna...
EUVD-2022-6406
Malicious code in bioql PyPI...
EUVD-2022-6223
Malicious code in bioql PyPI...
CVE-2025-9264
A vulnerability was found in Xuxueli xxl-job up to 3.1.1. Affected by this issue is the function remove of the file /src/main/java/com/xxl/job/admin/controller/JobInfoController.java of the component Jobs Handler. Performing manipulation of the argument ID results in improper control of resource...
CVE-2025-3508 Certain HP DesignJet products – Information disclosure
Certain HP DesignJet products may be vulnerable to information disclosure though printer's web interface allowing unauthenticated users to view sensitive print job information...
CVE-2025-3508 Certain HP DesignJet products – Information disclosure
Certain HP DesignJet products may be vulnerable to information disclosure though printer's web interface allowing unauthenticated users to view sensitive print job information...
Certain HP DesignJet products – Information disclosure
Certain HP DesignJet products may be vulnerable to information disclosure though printer's web interface allowing unauthenticated users to view sensitive print job information. HP has provided an updated firmware resolution for potentially affected products listed in the table below...
Dradis Framework 安全漏洞
Dradis Framework is an open source collaboration framework for IT security from Dradis Framework. A security vulnerability exists in Dradis Framework versions prior to 4.11.0, which stems from the output console displaying a job queue that may contain information about other users' jobs...
CVE-2024-50616
Ironman PowerShell Universal 5.x before 5.0.12 allows an authenticated attacker to elevate their privileges and view job information...
CVE-2022-34785
Jenkins build-metrics Plugin 1.3 and earlier does not perform permission checks in multiple HTTP endpoints, allowing attackers with Overall/Read permission to obtain information about jobs otherwise inaccessible to them...
CVE-2024-50616
Ironman PowerShell Universal 5.x before 5.0.12 allows an authenticated attacker to elevate their privileges and view job information...
PT-2024-34362 · Unknown · Ironman Powershell Universal
Name of the Vulnerable Software and Affected Versions: Ironman PowerShell Universal versions prior to 5.0.12 Description: The issue allows an authenticated attacker to elevate their privileges and view job information. Recommendations: For versions prior to 5.0.12, update to version 5.0.12 or lat...
CVE-2024-50616
Ironman PowerShell Universal 5.x before 5.0.12 is affected. An authenticated attacker can elevate privileges and view job information. The issue originates from Ironman PowerShell Universal prior to version 5.0.12, with documented vulnerability across multiple sources (NVD/Red Hat/CVE lists). The...
Ironman PowerShell Universal 安全漏洞
Ironman PowerShell Universal is a single pane for managing and delegating access to automation environments from Ironman. A security vulnerability exists in Ironman PowerShell Universal version 5.x prior to 5.0.12, which originates from a vulnerability that allows an authenticated attacker to...
CVE-2024-50616
Ironman PowerShell Universal 5.x before 5.0.12 allows an authenticated attacker to elevate their privileges and view job information...
CVE-2024-50616
Ironman PowerShell Universal 5.x before 5.0.12 allows an authenticated attacker to elevate their privileges and view job information...