Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

6 matches found

OSV
OSVadded 2026/03/20 8:56 p.m.3 views

GHSA-9FJP-Q3C4-6W3J Parse Server has a query condition depth bypass via pre-validation transform pipeline

Impact An attacker can send an unauthenticated HTTP request with a deeply nested query containing logical operators to permanently hang the Parse Server process. The server becomes completely unresponsive and must be manually restarted. This is a bypass of the fix for CVE-2026-32944. Patches The...

8.7CVSS5.9AI score0.00452EPSS
Exploits0References7
CVE
CVEadded 2025/12/22 4:32 a.m.8 views

CVE-2025-15013

This CVE pertains to floooh sokol (sokol_gfx.h) and a stack-based buffer overflow in the _sg_validate_pipeline_desc function. Affected versions are those prior to the commit 5d11344150973f15e16d3ec4ee7550a73fb995e0, with exploitation requiring local access. An publicly available exploit exists, a...

5.3CVSS5.5AI score0.00127EPSS
Exploits0References7
OSV
OSVadded 2022/05/13 1:15 a.m.4 views

GHSA-6Q78-6XVR-26FG Jenkins Groovy Plugin sandbox bypass vulnerability

Jenkins Script Security sandbox protection could be circumvented during the script compilation phase by applying AST transforming annotations such as @Grab to source code elements. Both the pipeline validation REST APIs and actual script/pipeline execution are affected. This allowed users with...

8.8CVSS7.3AI score0.86224EPSS
Exploits9References10
Github Security Blog
Github Security Blogadded 2022/05/13 1:15 a.m.35 views

Jenkins Groovy Plugin sandbox bypass vulnerability

Jenkins Script Security sandbox protection could be circumvented during the script compilation phase by applying AST transforming annotations such as @Grab to source code elements. Both the pipeline validation REST APIs and actual script/pipeline execution are affected. This allowed users with...

8.8CVSS7.7AI score0.86224EPSS
Exploits9References11Affected Software3
RedHat Linux
RedHat Linuxadded 2019/02/20 2:11 p.m.15 views

jenkins-plugin-script-security: Sandbox Bypass in Script Security Plugin

A flaw was found in Jenkins Pipeline. The Script Security sandbox protection could be circumvented during the script compilation phase by applying AST, transforming annotations such as @Grab to source code elements. Both the pipeline validation REST APIs and actual script/pipeline execution are...

8.8CVSS7AI score0.98428EPSS
Exploits15References5
RedhatCVE
RedhatCVEadded 2019/01/25 2:20 p.m.36 views

CVE-2019-1003001

A flaw was found in Jenkins Pipeline. In the Declarative plugin, the script sandbox protection could be circumvented during the script compilation phase by applying AST. Both the pipeline validation REST APIs and the actual script/pipeline execution are affected. This allows users with Overall/Re...

8.8CVSS1AI score0.86224EPSS
Exploits9References3
Rows per page
Query Builder