EUVD-2014-3626

Malware in sbrugna...

EUVD-2022-4226

Malicious code in bioql PyPI...

CVE-2025-58123 Lack of TLS validation in plugin BGP Monitoring on Checkmk Exchange

Improper Certificate Validation in Checkmk Exchange plugin BGP Monitoring allows attackers in MitM position to intercept traffic...

CVE-2024-11808

The Pingmeter Uptime Monitoring plugin for WordPress is vulnerable to Reflected Cross-Site Scripting via the 'wpnonce' parameter in all versions up to, and including, 1.0.3 due to insufficient input sanitization and output escaping. This makes it possible for unauthenticated attackers to inject...

CVE-2019-1003022

A denial of service vulnerability exists in Jenkins Monitoring Plugin 1.74.0 and earlier in PluginImpl.java that allows attackers to kill threads running on the Jenkins master...

CVE-2025-4194

The AlT Monitoring plugin for WordPress is vulnerable to Cross-Site Request Forgery in all versions up to, and including, 1.0.3. This is due to missing or incorrect nonce validation on the 'ALTMonitoringedit' page. This makes it possible for unauthenticated attackers to update settings and inject...

PT-2025-21772 · WordPress · Alt Monitoring

Name of the Vulnerable Software and Affected Versions: AlT Monitoring plugin for WordPress versions up to, and including, 1.0.3 Description: The issue is related to Cross-Site Request Forgery due to missing or incorrect nonce validation on the 'ALT Monitoring edit' page. This allows unauthenticat...

USN-5527-1: Checkmk vulnerabilities

It was discovered that Checkmk incorrectly handled authentication. An attacker could possibly use this issue to cause a race condition leading to information disclosure. CVE-2017-14955 It was discovered that Checkmk incorrectly handled certain inputs. An attacker could use these cross-site...

cc.catalysts.boot:cat-boot-javamelody (>=0.0.4 <=0.2.28), net.bull.javamelody:javamelody-collector-server (>=1.57.0 <=1.60.0) +1 more potentially affected by CVE-2016-1000273 via net.bull.javamelody:javamelody-core (>=1.10.0 <=1.60.0)

net.bull.javamelody:javamelody-core MAVEN version =1.10.0, =0.0.4, =1.57.0, =1.10.0, =1.60.0 Source cves: CVE-2016-1000273 Source advisory: OSV:GHSA-CQHR-JQVC-QW9P...

org.jvnet.hudson.plugins:monitoring (>=1.10.0 <=1.46.0) potentially affected by CVE-2013-4378 via net.bull.javamelody:javamelody-core (>=1.10.0 <=1.46.0)

net.bull.javamelody:javamelody-core MAVEN version =1.10.0, =1.10.0, =1.46.0 Source cves: CVE-2013-4378 Source advisory: OSV:GHSA-P4MX-P49M-8RW4...

GHSA-QWC3-P5PC-Q93H Jenkins Monitoring Plugin Reveals Sensitive Information via Unspecified Pages

The Monitoring plugin before 1.53.0 for Jenkins allows remote attackers to obtain sensitive information by accessing unspecified pages...

GHSA-GHJW-FC9Q-JJ8C Jenkins Monitoring Plugin allows Cross-Site Scripting (XSS)

Cross-site scripting XSS vulnerability in the Monitoring plugin before 1.53.0 for Jenkins allows remote attackers to inject arbitrary web script or HTML via unspecified vectors...

Jenkins Monitoring Plugin Reveals Sensitive Information via Unspecified Pages

The Monitoring plugin before 1.53.0 for Jenkins allows remote attackers to obtain sensitive information by accessing unspecified pages...

Jenkins Monitoring Plugin allows Cross-Site Scripting (XSS)

Cross-site scripting XSS vulnerability in the Monitoring plugin before 1.53.0 for Jenkins allows remote attackers to inject arbitrary web script or HTML via unspecified vectors...

cc.catalysts.boot:cat-boot-javamelody (>=0.0.4 <=0.2.28), net.bull.javamelody:javamelody-collector-server (>=1.57.0 <=1.60.0) +1 more potentially affected by CVE-2018-12432 via net.bull.javamelody:javamelody-core (>=1.10.0 <=1.60.0)

net.bull.javamelody:javamelody-core MAVEN version =1.10.0, =0.0.4, =1.57.0, =1.10.0, =1.60.0 Source cves: CVE-2018-12432 Source advisory: OSV:GHSA-G66Q-GRXC-64J3...

Jenkins Monitoring Plugin vulnerable to Denial of service vulnerability

A denial of service vulnerability exists in Jenkins Monitoring Plugin 1.74.0 and earlier in PluginImpl.java that allows attackers to kill threads running on the Jenkins master...

CVE-2019-10462

A cross-site request forgery vulnerability in Jenkins Dynatrace Application Monitoring Plugin 2.1.3 and earlier allowed attackers to connect to an attacker-specified URL using attacker-specified credentials...

CVE-2019-10462

A cross-site request forgery vulnerability in Jenkins Dynatrace Application Monitoring Plugin 2.1.3 and earlier allowed attackers to connect to an attacker-specified URL using attacker-specified credentials...

CVE-2019-10462

A cross-site request forgery vulnerability in Jenkins Dynatrace Application Monitoring Plugin 2.1.3 and earlier allowed attackers to connect to an attacker-specified URL using attacker-specified credentials...

CloudBees Jenkins Monitoring Plugin Cross-Site Request Forgery Vulnerability

CloudBees Jenkins Hudson Labs is the United States CloudBees company's set of Java-based development of continuous integration tools . The product is mainly used to monitor the continuous software version of the release/testing project and some timed tasks . Monitoring Plugin is used in one of th...