EUVD-2024-1584

Malicious code in bioql PyPI...

Malicious code in long-report-info-emulate-small (npm)

The package long-report-info-emulate-small was found to contain malicious code...

MAL-2025-25570 Malicious code in long-report-info-emulate-small (npm)

The package long-report-info-emulate-small was found to contain malicious code...

CVE-2025-2544

creationtimestamp| type| source ---|---|--- 2025-04-05 02:36:35+00:00| seen| https://t.me/DarkWebInformerCVEAlerts/10592 2025-04-05 06:33:41+00:00| seen| https://t.me/cvedetector/22177...

GHSA-CW5R-JX8R-9F7X Jenkins Report Info Plugin Path Traversal vulnerability

Jenkins Report Info Plugin 1.2 and earlier does not perform path validation of the workspace directory while serving report files. Additionally, Report Info Plugin does not support distributed builds. This results in a path traversal vulnerability, allowing attackers with Item/Configure permissio...

Jenkins Report Info Plugin Path Traversal vulnerability

Jenkins Report Info Plugin 1.2 and earlier does not perform path validation of the workspace directory while serving report files. Additionally, Report Info Plugin does not support distributed builds. This results in a path traversal vulnerability, allowing attackers with Item/Configure permissio...

CVE-2024-5273

Jenkins Report Info Plugin 1.2 and earlier does not perform path validation of the workspace directory while serving report files, allowing attackers with Item/Configure permission to retrieve Surefire failures, PMD violations, Findbugs bugs, and Checkstyle errors on the controller file system by...

CVE-2024-5273

Jenkins Report Info Plugin 1.2 and earlier does not perform path validation of the workspace directory while serving report files, allowing attackers with Item/Configure permission to retrieve Surefire failures, PMD violations, Findbugs bugs, and Checkstyle errors on the controller file system by...

CVE-2024-5273

Jenkins Report Info Plugin 1.2 and earlier does not perform path validation of the workspace directory while serving report files, allowing attackers with Item/Configure permission to retrieve Surefire failures, PMD violations, Findbugs bugs, and Checkstyle errors on the controller file system by...

PT-2024-35422 · Jenkins · Jenkins Report Info Plugin

Name of the Vulnerable Software and Affected Versions: Jenkins Report Info Plugin versions 1.2 and earlier Description: The issue arises from the lack of path validation of the workspace directory while serving report files, leading to a path traversal vulnerability. This allows attackers with...

Jenkins Plugin Report Info 安全漏洞

Jenkins and Jenkins Plugin are both open source products of Jenkins.Jenkins is a software application. An open source automation server Jenkins provides hundreds of plugins to support building, deploying, and automating any project.Jenkins Plugin is an application software ... A security...

Jenkins Report Info XML External Entity Processing Information Disclosure Vulnerability

This vulnerability allows remote attackers to disclose sensitive information on affected installations of Jenkins Report Info. Authentication is required to exploit this vulnerability. The specific flaw exists within the PMD class. Due to the improper restriction of XML External Entity XXE...