Lucene search
K

40 matches found

ATTACKERKB
ATTACKERKB
added 4 days ago5 views

CVE-2026-34099

Guardian language-system passes the id GET parameter directly into an unsanitized SQL query in jobinfo.php line 16: SELECT FROM jobs where id = '".$GET'id'."'. No authentication is required. An unauthenticated attacker can perform error-based SQL injection to extract the database version, current...

9.8CVSS5.8AI score0.00459EPSS
Exploits0References3
RedhatCVE
RedhatCVE
added 2026/01/09 12:29 p.m.10 views

CVE-2023-40348

The webhook endpoint in Jenkins Gogs Plugin 1.0.15 and earlier provides unauthenticated attackers information about the existence of jobs in its output...

5.3CVSS6.5AI score0.00547EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2026/01/07 9:36 a.m.10 views

CVE-2019-7549

An issue was discovered in GitLab Community and Enterprise Edition 10.x and 11.x before 11.5.10, 11.6.x before 11.6.8, and 11.7.x before 11.7.3. It has Incorrect Access Control. The GitLab pipelines feature is vulnerable to authorization issues that allow unauthorized users to view job informatio...

4.3CVSS6.4AI score0.00958EPSS
Exploits0References1
EUVD
EUVD
added 2025/10/07 12:30 a.m.4 views

EUVD-2019-17088

Malware in sbrugna...

4.3CVSS4.7AI score0.00958EPSS
Exploits0References3
EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2002-0278

Malware in sbrugna...

5.1CVSS6.4AI score0.01344EPSS
Exploits0References5
EUVD
EUVD
added 2025/10/03 8:7 p.m.5 views

EUVD-2022-6406

Malicious code in bioql PyPI...

4.3CVSS4.8AI score0.00644EPSS
Exploits0References3
EUVD
EUVD
added 2025/10/03 8:7 p.m.4 views

EUVD-2022-6223

Malicious code in bioql PyPI...

5.3CVSS5.4AI score0.00853EPSS
Exploits0References8
NVD
NVD
added 2025/08/21 12:15 a.m.8 views

CVE-2025-9264

A vulnerability was found in Xuxueli xxl-job up to 3.1.1. Affected by this issue is the function remove of the file /src/main/java/com/xxl/job/admin/controller/JobInfoController.java of the component Jobs Handler. Performing manipulation of the argument ID results in improper control of resource...

5.5CVSS0.00314EPSS
Exploits1References5
Cvelist
Cvelist
added 2025/07/25 3:58 p.m.8 views

CVE-2025-3508 Certain HP DesignJet products – Information disclosure

Certain HP DesignJet products may be vulnerable to information disclosure though printer's web interface allowing unauthenticated users to view sensitive print job information...

6CVSS0.00925EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2025/07/25 3:58 p.m.3 views

CVE-2025-3508 Certain HP DesignJet products – Information disclosure

Certain HP DesignJet products may be vulnerable to information disclosure though printer's web interface allowing unauthenticated users to view sensitive print job information...

6CVSS6.7AI score0.00925EPSS
Exploits0References1
Hewlett-Packard
Hewlett-Packard
added 2025/07/25 12:0 a.m.11 views

Certain HP DesignJet products – Information disclosure

Certain HP DesignJet products may be vulnerable to information disclosure though printer's web interface allowing unauthenticated users to view sensitive print job information. HP has provided an updated firmware resolution for potentially affected products listed in the table below...

6.5CVSS6.2AI score0.00925EPSS
Exploits0
CNNVD
CNNVD
added 2025/07/10 12:0 a.m.3 views

Dradis Framework 安全漏洞

Dradis Framework is an open source collaboration framework for IT security from Dradis Framework. A security vulnerability exists in Dradis Framework versions prior to 4.11.0, which stems from the output console displaying a job queue that may contain information about other users' jobs...

4.3CVSS6.4AI score0.00186EPSS
Exploits0References3
RedhatCVE
RedhatCVE
added 2025/05/23 8:32 a.m.12 views

CVE-2024-50616

Ironman PowerShell Universal 5.x before 5.0.12 allows an authenticated attacker to elevate their privileges and view job information...

8.8CVSS6.8AI score0.00426EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/22 11:0 p.m.14 views

CVE-2022-34785

Jenkins build-metrics Plugin 1.3 and earlier does not perform permission checks in multiple HTTP endpoints, allowing attackers with Overall/Read permission to obtain information about jobs otherwise inaccessible to them...

4.3CVSS6.3AI score0.00644EPSS
Exploits0References1
NVD
NVD
added 2024/10/27 10:15 p.m.15 views

CVE-2024-50616

Ironman PowerShell Universal 5.x before 5.0.12 allows an authenticated attacker to elevate their privileges and view job information...

8.8CVSS0.00426EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2024/10/27 12:0 a.m.5 views

PT-2024-34362 · Unknown · Ironman Powershell Universal

Name of the Vulnerable Software and Affected Versions: Ironman PowerShell Universal versions prior to 5.0.12 Description: The issue allows an authenticated attacker to elevate their privileges and view job information. Recommendations: For versions prior to 5.0.12, update to version 5.0.12 or lat...

8.8CVSS7AI score0.00426EPSS
Exploits0References3
CVE
CVE
added 2024/10/27 12:0 a.m.52 views

CVE-2024-50616

Ironman PowerShell Universal 5.x before 5.0.12 is affected. An authenticated attacker can elevate privileges and view job information. The issue originates from Ironman PowerShell Universal prior to version 5.0.12, with documented vulnerability across multiple sources (NVD/Red Hat/CVE lists). The...

8.8CVSS6.8AI score0.00426EPSS
Exploits0References1
CNNVD
CNNVD
added 2024/10/27 12:0 a.m.2 views

Ironman PowerShell Universal 安全漏洞

Ironman PowerShell Universal is a single pane for managing and delegating access to automation environments from Ironman. A security vulnerability exists in Ironman PowerShell Universal version 5.x prior to 5.0.12, which originates from a vulnerability that allows an authenticated attacker to...

8.8CVSS6.5AI score0.00426EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2024/10/27 12:0 a.m.11 views

CVE-2024-50616

Ironman PowerShell Universal 5.x before 5.0.12 allows an authenticated attacker to elevate their privileges and view job information...

6.7AI score0.00426EPSS
Exploits0References1
Cvelist
Cvelist
added 2024/10/27 12:0 a.m.26 views

CVE-2024-50616

Ironman PowerShell Universal 5.x before 5.0.12 allows an authenticated attacker to elevate their privileges and view job information...

0.00426EPSS
Exploits0References1
Rows per page
Query Builder