CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

22 matches found

EUVD•added 2025/10/03 8:7 p.m.•2 views

EUVD-2022-4539

Malicious code in bioql PyPI...

6.5CVSS6.6AI score0.00038EPSS

Exploits0References7

SUSE CVE•added 2023/02/15 4:4 a.m.•2 views

SUSE CVE-2020-2239

Jenkins Parameterized Remote Trigger Plugin 3.1.3 and earlier stores a secret unencrypted in its global configuration file on the Jenkins controller where it can be viewed by attackers with access to the Jenkins controller file system...

4.3CVSS4.8AI score0.00048EPSS

Exploits0References3

Github Security Blog•added 2022/05/13 1:40 a.m.•13 views

Parameterized Trigger Plugin fails to check Item/Build permission

Parameterized Trigger Plugin fails to check Item/Build permission: The Parameterized Trigger Plugin did not check the build authentication it was running as and allowed triggering any other project in Jenkins. The plugin has been adapted to now check for Item/Build permission before triggering a...

6.5CVSS3AI score0.00038EPSS

Exploits0References6Affected Software1

vulnersOsv•added 2022/05/13 1:40 a.m.•2 views

org.jenkins-ci.plugins:build-pipeline-plugin (>=1.3.4.1 <=1.5.8), org.jenkins-ci.plugins:buildgraph-view (>=1.3.1 <=1.8) +8 more potentially affected by CVE-2017-1000084 via org.jenkins-ci.plugins:parameterized-trigger (>=2.12 <=2.33)

org.jenkins-ci.plugins:parameterized-trigger MAVEN version =2.12, =1.3.4.1, =1.3.1, =1.0, =1.9, =1.02, =1.0, =0.8.0, =0.16, =1.1, =0.6.6, =1.1.1 Source cves: CVE-2017-1000084 Source advisory: OSV:GHSA-MC22-25R3-2W9W...

6.5CVSS6.6AI score0.00038EPSS

Exploits0

OSV•added 2022/05/13 1:40 a.m.•8 views

GHSA-MC22-25R3-2W9W Parameterized Trigger Plugin fails to check Item/Build permission

6.5CVSS6.5AI score0.00038EPSS

Exploits0References6

RedhatCVE•added 2022/03/18 4:17 p.m.•98 views

CVE-2022-27195

Jenkins Parameterized Trigger Plugin 2.43 and earlier captures environment variables passed to builds triggered using Jenkins Parameterized Trigger Plugin, including password parameter values, in their build.xml files. These values are stored unencrypted and can be viewed by users with access to...

5.5CVSS3.9AI score0.00406EPSS

Exploits0References4

CNVD•added 2022/03/17 12:0 a.m.•39 views

Jenkins Parameterized Trigger Plugin Information Disclosure Vulnerability

Jenkins and Jenkins Plugin are both Jenkins open source products. jenkins is an application. Jenkins Plugin is an application that provides hundreds of plugins to support building, deploying, and automating any project. These values are stored and can be viewed by an attacker with access to the...

5.5CVSS1.6AI score0.00406EPSS

Exploits0References1

Github Security Blog•added 2022/03/16 12:0 a.m.•21 views

Sensitive parameter values captured in build metadata files by Jenkins Parameterized Trigger Plugin

5.5CVSS1.2AI score0.00406EPSS

Exploits0References6Affected Software1

vulnersOsv•added 2022/03/16 12:0 a.m.•1 views

org.jenkins-ci.plugins:build-pipeline-plugin (>=1.3.4.1 <=1.5.8), org.jenkins-ci.plugins:buildgraph-view (>=1.3.1 <=1.8) +8 more potentially affected by CVE-2022-27195 via org.jenkins-ci.plugins:parameterized-trigger (>=2.12 <=2.33)

org.jenkins-ci.plugins:parameterized-trigger MAVEN version =2.12, =1.3.4.1, =1.3.1, =1.0, =1.9, =1.02, =1.0, =0.8.0, =0.16, =1.1, =0.6.6, =1.1.1 Source cves: CVE-2022-27195 Source advisory: OSV:GHSA-5MPF-HW8F-86W9...

5.5CVSS6AI score0.00406EPSS

Exploits0

OSV•added 2022/03/16 12:0 a.m.•24 views

GHSA-5MPF-HW8F-86W9 Sensitive parameter values captured in build metadata files by Jenkins Parameterized Trigger Plugin

3.3CVSS5.7AI score0.00406EPSS

Exploits0References6

OSV•added 2022/03/15 5:15 p.m.•21 views

CVE-2022-27195

5.5CVSS5.5AI score

Exploits0References2

NVD•added 2022/03/15 5:15 p.m.•17 views

CVE-2022-27195

5.5CVSS0.00406EPSS

Exploits0References2

ATTACKERKB•added 2022/03/15 5:15 p.m.•18 views

CVE-2022-27195

5.5CVSS5.8AI score0.00406EPSS

Exploits0References3

Prion•added 2022/03/15 5:15 p.m.•14 views

Design/Logic Flaw

2.1CVSS5.4AI score0.00406EPSS

Exploits0References2Affected Software1

CVE•added 2022/03/15 4:45 p.m.•129 views

CVE-2022-27195

CVE-2022-27195 affects Jenkins Parameterized Trigger Plugin (versions 2.43 and earlier). The vulnerability arises from the plugin capturing environment variables passed to builds triggered by the plugin, including password parameter values, and storing them unencrypted in build.xml files. These s...

5.5CVSS5.7AI score0.00406EPSS

Exploits0References2Affected Software1

Cvelist•added 2022/03/15 4:45 p.m.•15 views

CVE-2022-27195

6.2AI score0.00406EPSS

Exploits0References2

CNNVD•added 2022/03/15 12:0 a.m.•2 views

Jenkins Plugin Parameterized Trigger 安全漏洞

5.5CVSS5.6AI score0.00406EPSS

Exploits0References6

CNVD•added 2017/10/31 12:0 a.m.•2 views

Unspecified Vulnerability in CloudBees Parameterized Trigger Plugin

CloudBees Parameterized Trigger Plugin is a parameterized trigger plugin in the U.S. CloudBees company's Jenkins Java-based development of continuous integration tools. An unspecified vulnerability exists in the CloudBees Parameterized Trigger Plugin that stems from the program's failure to detec...

6.5CVSS6.5AI score0.00038EPSS

Exploits0References1

NVD•added 2017/10/05 1:29 a.m.•9 views

CVE-2017-1000084

6.5CVSS6.6AI score0.00038EPSS

Exploits0References1

Prion•added 2017/10/05 1:29 a.m.•11 views

Authentication flaw

4CVSS6.5AI score0.00038EPSS

Exploits0References1Affected Software1

Rows per page