Lucene search
K

28 matches found

OSV
OSV
added 2022/05/14 3:13 a.m.20 views

GHSA-92RV-MVMJ-47QH Jenkins GitHub Pull Request Builder Plugin credential capture vulnerability

A exposure of sensitive information vulnerability exists in Jenkins GitHub Pull Request Builder Plugin 1.41.0 and older in GhprbGitHubAuth.java that allows attackers with Overall/Read access to connect to an attacker-specified URL using attacker-specified credentials IDs obtained through another...

4.2CVSS6.4AI score0.00988EPSS
Exploits0References5
NVD
NVD
added 2018/06/05 8:29 p.m.23 views

CVE-2018-1000186

A exposure of sensitive information vulnerability exists in Jenkins GitHub Pull Request Builder Plugin 1.41.0 and older in GhprbGitHubAuth.java that allows attackers with Overall/Read access to connect to an attacker-specified URL using attacker-specified credentials IDs obtained through another...

6.5CVSS6.3AI score0.00988EPSS
Exploits0References1
OSV
OSV
added 2018/06/05 8:29 p.m.21 views

CVE-2018-1000186

A exposure of sensitive information vulnerability exists in Jenkins GitHub Pull Request Builder Plugin 1.41.0 and older in GhprbGitHubAuth.java that allows attackers with Overall/Read access to connect to an attacker-specified URL using attacker-specified credentials IDs obtained through another...

6.5CVSS6.5AI score
Exploits0References1
Cvelist
Cvelist
added 2018/06/05 8:0 p.m.24 views

CVE-2018-1000186

A exposure of sensitive information vulnerability exists in Jenkins GitHub Pull Request Builder Plugin 1.41.0 and older in GhprbGitHubAuth.java that allows attackers with Overall/Read access to connect to an attacker-specified URL using attacker-specified credentials IDs obtained through another...

6.3AI score0.00988EPSS
Exploits0References1
CVE
CVE
added 2018/06/05 8:0 p.m.62 views

CVE-2018-1000186

Affected software: Jenkins GitHub Pull Request Builder Plugin (GhprbGitHubAuth.java) up to version 1.41.0. The vulnerability allows attackers with Overall/Read access to connect to an attacker‑specified URL using attacker‑provided credentials IDs, enabling capture of credentials stored in Jenkins...

6.5CVSS6.2AI score0.00988EPSS
Exploits0References1Affected Software1
NVD
NVD
added 2018/04/05 1:29 p.m.20 views

CVE-2018-1000142

An exposure of sensitive information vulnerability exists in Jenkins GitHub Pull Request Builder Plugin version 1.39.0 and older in GhprbCause.java that allows an attacker with local file system access to obtain GitHub credentials...

7.8CVSS7.4AI score0.00376EPSS
Exploits0References1
NVD
NVD
added 2018/04/05 1:29 p.m.24 views

CVE-2018-1000143

An exposure of sensitive information vulnerability exists in Jenkins GitHub Pull Request Builder Plugin version 1.39.0 and older in GhprbCause.java that allows an attacker with local file system access to obtain GitHub credentials...

6.7CVSS6.3AI score0.00368EPSS
Exploits0References1
OSV
OSV
added 2018/04/05 1:29 p.m.20 views

CVE-2018-1000143

An exposure of sensitive information vulnerability exists in Jenkins GitHub Pull Request Builder Plugin version 1.39.0 and older in GhprbCause.java that allows an attacker with local file system access to obtain GitHub credentials...

6.7CVSS6.5AI score
Exploits0References1
Rows per page
Query Builder