Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

9 matches found

EUVD
EUVDadded 2025/10/03 8:7 p.m.2 views

EUVD-2021-30711

Malicious code in bioql PyPI...

10CVSS9.2AI score0.01815EPSS
Exploits0References1
RedhatCVE
RedhatCVEadded 2025/05/22 10:59 a.m.10 views

CVE-2017-1000106

Blue Ocean allows the creation of GitHub organization folders that are set up to scan a GitHub organization for repositories and branches containing a Jenkinsfile, and create corresponding pipelines in Jenkins. Its SCM content REST API supports the pipeline creation and editing feature in Blue...

8.5CVSS6.9AI score0.0003EPSS
Exploits0References1
RedHat Linux
RedHat Linuxadded 2023/02/08 6:41 p.m.4 views

jenkins-plugin/workflow-support: Stored XSS vulnerability in Pipeline: Supporting APIs Plugin

A Cross-site scripting XSS vulnerability was found in a Jenkins plugin. This issue may allow an authenticated remote attacker to create Pipelines...

5.4CVSS5.7AI score0.04368EPSS
Exploits0References5
CNNVD
CNNVDadded 2022/04/14 12:0 a.m.3 views

ThoughtWorks GoCD 信息泄露漏洞

ThoughtWorks GoCD is a free and open source CI/CD server from ThoughtWorks, Inc. An information disclosure vulnerability exists in versions of ThoughtWorks GoCD prior to 21.3.0, which could be exploited by an attacker with the right to create a new pipeline on the GoCD server by abusing the Git U...

7.5CVSS8.1AI score0.79181EPSS
Exploits2References4
CNVD
CNVDadded 2022/01/06 12:0 a.m.23 views

Spinnaker Access Control Error Vulnerability

Spinnaker is a continuous delivery platform. Used to release software changes with high speed and confidence. Spinnaker has a security vulnerability that stems from the presence of inappropriate privileges in the software that allow for pipeline creation and execution. This allows an arbitrary us...

10CVSS9.7AI score0.01815EPSS
Exploits0References1
NVD
NVDadded 2022/01/04 8:15 p.m.13 views

CVE-2021-43832

Spinnaker is an open source, multi-cloud continuous delivery platform. Spinnaker has improper permissions allowing pipeline creation & execution. This lets an arbitrary user with access to the gate endpoint to create a pipeline and execute it without authentication. If users haven't setup...

10CVSS0.01815EPSS
Exploits0References1
CVE
CVEadded 2022/01/04 7:20 p.m.46 views

CVE-2021-43832

CVE-2021-43832 applies to Spinnaker, where improper permissions allow an arbitrary user with gate-endpoint access to create and execute pipelines without authentication. If RBAC is not configured across all accounts/applications, this enables remote execution and deploying resources on any accoun...

10CVSS9.7AI score0.01815EPSS
Exploits0References1Affected Software1
CNNVD
CNNVDadded 2022/01/04 12:0 a.m.3 views

Spinnaker 访问控制错误漏洞

Spinnaker is a continuous delivery platform. Used to release software changes with high speed and confidence. Spinnaker has a security vulnerability that stems from the presence of inappropriate privileges in the software that allow for pipeline creation and execution. This allows an arbitrary us...

10CVSS6.1AI score0.01815EPSS
Exploits0References3
Prion
Prionadded 2017/10/05 1:29 a.m.18 views

Design/Logic Flaw

Blue Ocean allows the creation of GitHub organization folders that are set up to scan a GitHub organization for repositories and branches containing a Jenkinsfile, and create corresponding pipelines in Jenkins. Its SCM content REST API supports the pipeline creation and editing feature in Blue...

5.5CVSS8.3AI score0.0003EPSS
Exploits0References1Affected Software1
Rows per page
Query Builder