37 matches found
EUVD-2014-3819
Malware in sbrugna...
EUVD-2023-1970
Malicious code in bioql PyPI...
EUVD-2022-3030
Malicious code in bioql PyPI...
CVE-2023-37954
A cross-site request forgery CSRF vulnerability in Jenkins Rebuilder Plugin 320.v5a0933ae7d61 and earlier allows attackers to rebuild a previous build...
WordPress Login Rebuilder Cross Site Scripting
Tittle: WordPress Plugin Login Rebuilder " 3. Save the changes to trigger XSS. Classification: Type XSS OWASP top 10 A7: Cross-Site Scripting XSS CWE-79 wpScan: https://wpscan.com/vulnerability/7b356b82-5d03-4f70-b4ce-f1405304bb52...
Cross Site Request Forgery (CSRF)
com.sonyericsson.hudson.plugins.rebuild: rebuilder is vulnerable to Cross Site Request Forgery CSRF. The vulnerability exists because it does not require POST requests for an HTTP endpoint which allows an attacker to rebuild a previous build...
GHSA-5R5C-7RM4-MP4R Jenkins Rebuilder Plugin vulnerable to Cross Site Request Forgery
Jenkins Rebuilder Plugin 320.v5a0933ae7d61 and earlier does not require POST requests for an HTTP endpoint, resulting in a cross-site request forgery CSRF vulnerability. This vulnerability allows attackers to rebuild a previous build...
Jenkins Rebuilder Plugin vulnerable to Cross Site Request Forgery
Jenkins Rebuilder Plugin 320.v5a0933ae7d61 and earlier does not require POST requests for an HTTP endpoint, resulting in a cross-site request forgery CSRF vulnerability. This vulnerability allows attackers to rebuild a previous build...
CVE-2023-37954
A cross-site request forgery CSRF vulnerability in Jenkins Rebuilder Plugin 320.v5a0933ae7d61 and earlier allows attackers to rebuild a previous build...
CVE-2023-37954
A cross-site request forgery CSRF vulnerability in Jenkins Rebuilder Plugin 320.v5a0933ae7d61 and earlier allows attackers to rebuild a previous build...
Cross site request forgery (csrf)
A cross-site request forgery CSRF vulnerability in Jenkins Rebuilder Plugin 320.v5a0933ae7d61 and earlier allows attackers to rebuild a previous build...
CVE-2023-37954
The CVE-2023-37954 issue is a CSRF vulnerability in Jenkins Rebuilder Plugin 320.v5a_0933a_e7d61 and earlier that allows an attacker to rebuild a previous build. Root cause noted in sources (e.g., GHSA advisory) is that the HTTP endpoint does not require POST, enabling CSRF. Affected versions are...
CVE-2023-37954
A cross-site request forgery CSRF vulnerability in Jenkins Rebuilder Plugin 320.v5a0933ae7d61 and earlier allows attackers to rebuild a previous build...
CVE-2023-37954
A cross-site request forgery CSRF vulnerability in Jenkins Rebuilder Plugin 320.v5a0933ae7d61 and earlier allows attackers to rebuild a previous build...
CVE-2023-37954
A cross-site request forgery CSRF vulnerability in Jenkins Rebuilder Plugin 320.v5a0933ae7d61 and earlier allows attackers to rebuild a previous build...
Jenkins Plugin Rebuilder 跨站请求伪造漏洞
Jenkins and Jenkins Plugin are both Jenkins open source products.Jenkins is a software application . An open source automation server Jenkins provides hundreds of plugins to support building, deploying and automating any project.Jenkins Plugin is a software application. A security vulnerability...
CVE-2023-2223
The Login rebuilder WordPress plugin before 2.8.1 does not sanitise and escape some of its settings, which could allow high privilege users such as admin to perform Stored Cross-Site Scripting attacks even when the unfilteredhtml capability is disallowed for example in multisite setup...
Cross site scripting
The Login rebuilder WordPress plugin before 2.8.1 does not sanitise and escape some of its settings, which could allow high privilege users such as admin to perform Stored Cross-Site Scripting attacks even when the unfilteredhtml capability is disallowed for example in multisite setup...
CVE-2023-2223 Login Rebuilder < 2.8.1 - Admin+ Stored XSS
The Login rebuilder WordPress plugin before 2.8.1 does not sanitise and escape some of its settings, which could allow high privilege users such as admin to perform Stored Cross-Site Scripting attacks even when the unfilteredhtml capability is disallowed for example in multisite setup...
PT-2023-18385 · WordPress · Login Rebuilder
Name of the Vulnerable Software and Affected Versions: Login rebuilder WordPress plugin versions prior to 2.8.1 Description: The issue allows high privilege users, such as admins, to perform Stored Cross-Site Scripting attacks, even when the unfiltered html capability is disallowed, for example, ...