14 matches found
Malicious code in hoodle-plugins-manager (npm)
The package communicates with a domain associated with malicious activity...
MAL-2025-48366 Malicious code in hoodle-plugins-manager (npm)
The package communicates with a domain associated with malicious activity...
EUVD-2025-32217
Malicious code in bioql PyPI...
MAL-2025-47898 Malicious code in @peterwiener/hoodle-plugins-manager (npm)
--- -= Per source details. Do not edit below this line.=- Source: ossf-package-analysis d6054e60226e11fc8823a0f2c40c7e12ac3bc01084f133848165156c128e777b The OpenSSF Package Analysis project identified '@peterwiener/hoodle-plugins-manager' @ 0.5.0 npm as malicious. It is considered malicious...
Malicious code in @peterwiener/hoodle-plugins-manager (npm)
--- -= Per source details. Do not edit below this line.=- Source: ossf-package-analysis d6054e60226e11fc8823a0f2c40c7e12ac3bc01084f133848165156c128e777b The OpenSSF Package Analysis project identified '@peterwiener/hoodle-plugins-manager' @ 0.5.0 npm as malicious. It is considered malicious...
CloudBees Jenkins CI and LTS Request Forgery Vulnerability
CloudBees Jenkins CI is a set of Java-based development of continuous integration tools , it is mainly used to monitor the continuous software version of the release/testing project and some of the timed execution of the task . LTS is a long-term support for CloudBees Jenkins CI version . A reque...
CloudBees Jenkins CI and LTS Plugins Manager Arbitrary Code Execution Vulnerability
CloudBees Jenkins CI is a set of Java-based development of continuous integration tools , it is mainly used to monitor the continuous software version of the release/testing project and some of the timed execution of the task . LTS is a long-term support for CloudBees Jenkins CI version . CloudBe...
CloudBees Jenkins CI and LTS Plugins Manager Security Bypass Vulnerability
CloudBees Jenkins CI is a set of Java-based development of continuous integration tools , it is mainly used to monitor the continuous software version of the release/testing project and some of the timed execution of the task . LTS is a long-term support for CloudBees Jenkins CI version . A...
CloudBees Jenkins CI and LTS Cross-Site Scripting Vulnerability
CloudBees Jenkins CI is a set of Java-based development of continuous integration tools , it is mainly used to monitor the continuous software version of the release/testing project and some of the timed execution of the task . LTS is a long-term support for CloudBees Jenkins CI version . A...
CVE-2015-7539
The Plugins Manager in Jenkins before 1.640 and LTS before 1.625.2 does not verify checksums for plugin files referenced in update site data, which makes it easier for man-in-the-middle attackers to execute arbitrary code via a crafted plugin...
Code injection
The Plugins Manager in Jenkins before 1.640 and LTS before 1.625.2 does not verify checksums for plugin files referenced in update site data, which makes it easier for man-in-the-middle attackers to execute arbitrary code via a crafted plugin...
CVE-2015-7539
The Plugins Manager in Jenkins before 1.640 and LTS before 1.625.2 does not verify checksums for plugin files referenced in update site data, which makes it easier for man-in-the-middle attackers to execute arbitrary code via a crafted plugin...
CVE-2015-7539
The Plugins Manager in Jenkins before 1.640 and LTS before 1.625.2 does not verify checksums for plugin files referenced in update site data, which makes it easier for man-in-the-middle attackers to execute arbitrary code via a crafted plugin...
CVE-2015-7539
CVE-2015-7539 affects Jenkins: Plugins Manager in Jenkins (non-LTS prior to 1.640 and LTS prior to 1.625.2) does not verify checksums for plugin files referenced in update site data, enabling potential MITM exploitation to run arbitrary code via a crafted plugin. Remediation: upgrade Jenkins to 1...