EUVD-2022-4845

Malicious code in bioql PyPI...

CSRF vulnerability in Jenkins Translation Assistance plugin

Jenkins Translation Assistance Plugin 1.15 and earlier did not require form submissions to be submitted via POST, resulting in a CSRF vulnerability allowing attackers to override localized strings displayed to all users on the current Jenkins instance if the victim is a Jenkins administrator...

GHSA-PWVJ-6PHX-QV8C CSRF vulnerability in Jenkins Translation Assistance plugin

Jenkins Translation Assistance Plugin 1.15 and earlier did not require form submissions to be submitted via POST, resulting in a CSRF vulnerability allowing attackers to override localized strings displayed to all users on the current Jenkins instance if the victim is a Jenkins administrator...

Cross-site Request Forgery (CSRF)

The Jenkins Translation plugin is vulnerable to cross-site request forgery CSRF attacks. POST requests don't require a form submission to be submitted. Leveraging this, attackers can override localized strings displayed to all users when the victim is a Jenkins administrator...

CVE-2018-1000014

Jenkins Translation Assistance Plugin 1.15 and earlier did not require form submissions to be submitted via POST, resulting in a CSRF vulnerability allowing attackers to override localized strings displayed to all users on the current Jenkins instance if the victim is a Jenkins administrator...

CVE-2018-1000014

Jenkins Translation Assistance Plugin 1.15 and earlier did not require form submissions to be submitted via POST, resulting in a CSRF vulnerability allowing attackers to override localized strings displayed to all users on the current Jenkins instance if the victim is a Jenkins administrator...

CUPS Localized String Elevation of Privilege Vulnerability

CUPS is a universal Unix printing system , is a cross-platform printing solution for the Unix environment , based on the Internet Printing Protocol , to provide most of the PostScript and raster printer services. CUPS has a security vulnerability that allows remote users to send special localized...

USN-2629-1 cups vulnerabilities

It was discovered that CUPS incorrectly handled reference counting when handling localized strings. A remote attacker could use this issue to escalate permissions, upload a replacement CUPS configuration file, and execute arbitrary code. CVE-2015-1158 It was discovered that the CUPS templating...

cups: multiple issues

CVE-2015-1158 arbitrary code execution, privilege escalation An issue with how localized strings are handled in cupsd allows a reference counter to over-decrement when handling certain print job request errors. As a result, an attacker can prematurely free an arbitrary string of global scope,...

Apple Mac OS X LaunchServices Arbitrary Code Execution Vulnerability

Apple Mac OS X is an operating system developed by Apple Inc. A type confusion vulnerability in the handling of localized strings by Apple Mac OS X LaunchServices allows local attackers to execute arbitrary code...