Lucene search
K

9 matches found

Cvelist
Cvelist
added 2026/06/24 1:20 p.m.31 views

CVE-2026-57301

Jenkins OWASP ZAP Plugin 1.0.7 and earlier performs build operations on the Jenkins controller rather than the assigned agent, allowing attackers with Item/Configure permission to execute arbitrary code on the Jenkins controller...

0.0042EPSS
Exploits0References1
EUVD
EUVD
added 2025/10/03 8:7 p.m.6 views

EUVD-2022-3026

Malicious code in bioql PyPI...

8.8CVSS8.4AI score0.01365EPSS
Exploits0References5
RedhatCVE
RedhatCVE
added 2025/05/22 4:47 a.m.7 views

CVE-2019-1003060

Jenkins Official OWASP ZAP Plugin stores credentials unencrypted in its global configuration file on the Jenkins master where they can be viewed by users with access to the master file system...

8.8CVSS6.7AI score0.01365EPSS
Exploits0References1
OSV
OSV
added 2022/05/13 1:17 a.m.10 views

GHSA-7JX8-244G-JFPX Jenkins OWASP ZAP Plugin stores unencrypted credentials

Jenkins Official OWASP ZAP Plugin stores Jira credentials unencrypted in its global configuration file org.jenkinsci.plugins.zap.ZAPBuilder.xml on the Jenkins controller. These credentials can be viewed by users with access to the Jenkins controller file system...

3.3CVSS8.7AI score0.01365EPSS
Exploits0References5
CNVD
CNVD
added 2019/08/23 12:0 a.m.1 views

CloudBees Jenkins Official OWASP ZAP Plugin Trust Management Issue Vulnerability

CloudBees Jenkins Hudson Labs is a set of Java-based continuous integration tools from CloudBees. The product is mainly used to monitor the continuous software version of the release/testing project and some timed tasks . Official OWASP ZAP Plugin is used in one of the automatic scanning tool for...

8.8CVSS7AI score0.01365EPSS
Exploits0References1
Prion
Prion
added 2019/04/04 4:29 p.m.13 views

Design/Logic Flaw

Jenkins Official OWASP ZAP Plugin stores credentials unencrypted in its global configuration file on the Jenkins master where they can be viewed by users with access to the master file system...

4CVSS8.6AI score0.01365EPSS
Exploits0References3
OSV
OSV
added 2019/04/04 4:29 p.m.2 views

CVE-2019-1003060

Jenkins Official OWASP ZAP Plugin stores credentials unencrypted in its global configuration file on the Jenkins master where they can be viewed by users with access to the master file system...

8.8CVSS7.3AI score0.01365EPSS
Exploits0References3
Cvelist
Cvelist
added 2019/04/04 3:38 p.m.13 views

CVE-2019-1003060

Jenkins Official OWASP ZAP Plugin stores credentials unencrypted in its global configuration file on the Jenkins master where they can be viewed by users with access to the master file system...

8.7AI score0.01365EPSS
Exploits0References3
Kitploit
Kitploit
added 2018/03/26 8:38 p.m.92 views

Retire.Js - Scanner Detecting The Use Of JavaScript Libraries With Known Vulnerabilities

What you require you must also retire There is a plethora of JavaScript libraries for use on the Web and in Node.JS apps out there. This greatly simplifies development,but we need to stay up-to-date on security fixes. "Using Components with Known Vulnerabilities" is now a part of the OWASP Top 10...

7.4AI score
Exploits0References9
Rows per page
Query Builder