Lucene search
K

14 matches found

RedhatCVE
RedhatCVE
added 2025/05/22 10:30 a.m.9 views

CVE-2019-5475

The Nexus Yum Repository Plugin in v2 is vulnerable to Remote Code Execution when instances using CommandLineExecutor.java are supplied vulnerable data, such as the Yum Configuration Capability...

9CVSS7.3AI score0.18396EPSS
Exploits5References1
RedhatCVE
RedhatCVE
added 2025/05/22 8:59 a.m.7 views

CVE-2019-9872

In several versions of JetBrains IntelliJ IDEA Ultimate, creating run configurations for cloud application servers leads to saving a cleartext unencrypted record of the server credentials in the IDE configuration files. If the Settings Repository plugin was then used and configured to synchronize...

8.1CVSS6.9AI score0.01153EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2023/06/14 12:0 a.m.5 views

PT-2023-25163 · Jenkins · Jenkins Maven Repository Server Plugin +1

Name of the Vulnerable Software and Affected Versions: Jenkins Maven Repository Server Plugin versions 1.10 and earlier Description: The issue is related to a stored cross-site scripting XSS vulnerability. It occurs because the plugin does not escape project and build display names on the Build...

5.4CVSS5.5AI score0.00617EPSS
Exploits0References6
vulnersOsv
vulnersOsv
added 2020/04/14 3:27 p.m.4 views

org.eclipse.tycho.nexus:unzip-repository-plugin (=0.12.0), org.sonatype.nexus.assemblies:nexus-base-template (>=3.10.0-04 <=3.21.1-01) +27 more potentially affected by CVE-2020-10203 via org.sonatype.nexus:nexus-core (>=2.4.0-1 <=3.21.1-01)

org.sonatype.nexus:nexus-core MAVEN version =2.4.0-1, =3.10.0-04, =3.0.0-03, =2.2.1, =2.2.1, =2.4.0-1, =2.4.0-1, =2.6.0-01, =2.6.0-01, =2.4.0-1, =2.6.0-01, =2.4.0-1, =2.6.0-01, =2.5.0-01, =2.4.0-1, =2.7.0-m1 and more Source cves: CVE-2020-10203 Source advisory:...

4.8CVSS5.8AI score0.00918EPSS
Exploits0
Veracode
Veracode
added 2019/09/04 3:34 a.m.23 views

Remote Code Execution

nexus-yum-repository-plugin is vulnerable to remote code execution. An attacker with administrative access to nxrm is able to execute arbitrary OS commands on the system by setting the path of createrepo or mergerepo to an OS command in the XML input...

8.8CVSS4.6AI score0.18396EPSS
Exploits5References2Affected Software1
OSV
OSV
added 2019/09/03 8:15 p.m.21 views

CVE-2019-5475

The Nexus Yum Repository Plugin in v2 is vulnerable to Remote Code Execution when instances using CommandLineExecutor.java are supplied vulnerable data, such as the Yum Configuration Capability...

8.8CVSS7.2AI score
Exploits0References1
NVD
NVD
added 2019/09/03 8:15 p.m.16 views

CVE-2019-5475

The Nexus Yum Repository Plugin in v2 is vulnerable to Remote Code Execution when instances using CommandLineExecutor.java are supplied vulnerable data, such as the Yum Configuration Capability...

9CVSS7.3AI score0.18396EPSS
Exploits5References1
Prion
Prion
added 2019/09/03 8:15 p.m.19 views

Remote code execution

The Nexus Yum Repository Plugin in v2 is vulnerable to Remote Code Execution when instances using CommandLineExecutor.java are supplied vulnerable data, such as the Yum Configuration Capability...

9CVSS7.8AI score0.18396EPSS
Exploits5References1Affected Software1
OSV
OSV
added 2019/07/03 7:15 p.m.5 views

CVE-2019-9872

In several versions of JetBrains IntelliJ IDEA Ultimate, creating run configurations for cloud application servers leads to saving a cleartext unencrypted record of the server credentials in the IDE configuration files. If the Settings Repository plugin was then used and configured to synchronize...

8.1CVSS7.1AI score0.01153EPSS
Exploits0References1
Prion
Prion
added 2019/07/03 7:15 p.m.17 views

Design/Logic Flaw

In several versions of JetBrains IntelliJ IDEA Ultimate, creating run configurations for cloud application servers leads to saving a cleartext unencrypted record of the server credentials in the IDE configuration files. If the Settings Repository plugin was then used and configured to synchronize...

4.3CVSS8AI score0.01153EPSS
Exploits0References1Affected Software1
Cvelist
Cvelist
added 2019/07/03 6:40 p.m.25 views

CVE-2019-9872

In several versions of JetBrains IntelliJ IDEA Ultimate, creating run configurations for cloud application servers leads to saving a cleartext unencrypted record of the server credentials in the IDE configuration files. If the Settings Repository plugin was then used and configured to synchronize...

8.1AI score0.01153EPSS
Exploits0References1
RedHat Linux
RedHat Linux
added 2019/05/14 1:35 p.m.5 views

pulp: Improper path parsing leads to overwriting of iso repositories

A path traversal flaw was found in the ISO repository plugin for pulp. An attacker, with access to a repository feeding pulp can carefully craft his repository to overwrite arbitrary files owned by the Apache webserver...

6.8CVSS5.8AI score0.01067EPSS
Exploits0References4
CNVD
CNVD
added 2018/09/21 12:0 a.m.5 views

Elasticsearch repository-azure information disclosure vulnerability

Elasticsearch is the Netherlands Elasticsearch company based on Lucene built a set of open source distributed RESTful search engine , it is mainly used in cloud computing , and supports the use of JSON via HTTP for data indexing . repository-azure is one of the repository plugin . An information...

8.1CVSS6.8AI score0.01014EPSS
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2013/10/18 12:0 a.m.29 views

AjaXplorer < 5.0.1 Multiple Command Execution Vulnerabilities

The version of AjaXplorer hosted on the remote web server is earlier than 5.0.1. It is, therefore, affected by multiple command execution vulnerabilities in the following plugins: - File System Standard Plugin access.fs - Power FS Plugin action.powerfs - Subversion Repository Plugin meta.svn The...

10CVSS8.4AI score0.04121EPSS
Exploits0References3
Rows per page
Query Builder