Lucene search
K

8 matches found

EUVD
EUVD
added 2025/10/03 8:7 p.m.8 views

EUVD-2022-2974

Malicious code in bioql PyPI...

5.4CVSS5.4AI score0.01033EPSS
Exploits0References6
RedHat Linux
RedHat Linux
added 2020/01/23 4:30 a.m.6 views

jenkins: Stored XSS vulnerability in SCM tag action tooltip

Jenkins 2.196 and earlier, LTS 2.176.3 and earlier did not escape the SCM tag name on the tooltip for SCM tag actions, resulting in a stored XSS vulnerability exploitable by users able to control SCM tag names for these actions...

5.4CVSS6.1AI score0.01033EPSS
Exploits0References4
RedHat Linux
RedHat Linux
added 2020/01/14 5:32 a.m.3 views

jenkins: Stored XSS vulnerability in SCM tag action tooltip

Jenkins 2.196 and earlier, LTS 2.176.3 and earlier did not escape the SCM tag name on the tooltip for SCM tag actions, resulting in a stored XSS vulnerability exploitable by users able to control SCM tag names for these actions...

5.4CVSS6.1AI score0.01033EPSS
Exploits0References4
Tenable Nessus
Tenable Nessus
added 2019/10/21 12:0 a.m.43 views

Jenkins < 2.176.4 LTS / 2.197 Multiple Vulnerabilities

The version of Jenkins running on the remote web server is prior to 2.197 or is a version of Jenkins LTS prior to 2.176.4. It is, therefore, affected by multiple vulnerabilities: - An information disclosure vulnerability exists in the /whoAmI/ URL due to the exposed 'Cookie' HTTP Header. An...

5.4CVSS5.8AI score0.65753EPSS
Exploits0References7
OSV
OSV
added 2019/09/25 4:15 p.m.25 views

CVE-2019-10403

Jenkins 2.196 and earlier, LTS 2.176.3 and earlier did not escape the SCM tag name on the tooltip for SCM tag actions, resulting in a stored XSS vulnerability exploitable by users able to control SCM tag names for these actions...

5.4CVSS5.6AI score
Exploits0References2
Prion
Prion
added 2019/09/25 4:15 p.m.18 views

Cross site scripting

Jenkins 2.196 and earlier, LTS 2.176.3 and earlier did not escape the SCM tag name on the tooltip for SCM tag actions, resulting in a stored XSS vulnerability exploitable by users able to control SCM tag names for these actions...

3.5CVSS5.1AI score0.01033EPSS
Exploits0References2Affected Software1
AlpineLinux
AlpineLinux
added 2019/09/25 3:5 p.m.50 views

CVE-2019-10403

Jenkins 2.196 and earlier, LTS 2.176.3 and earlier did not escape the SCM tag name on the tooltip for SCM tag actions, resulting in a stored XSS vulnerability exploitable by users able to control SCM tag names for these actions...

5.4CVSS5.2AI score0.01033EPSS
Exploits0
Positive Technologies
Positive Technologies
added 2019/09/25 12:0 a.m.4 views

PT-2019-11797 · Cloudbees +1 · Jenkins

Name of the Vulnerable Software and Affected Versions: Jenkins versions 2.196 and earlier Jenkins LTS versions 2.176.3 and earlier Description: The issue results from the failure to escape the SCM tag name on the tooltip for SCM tag actions, leading to a stored XSS vulnerability. This can be...

5.4CVSS5.1AI score0.01033EPSS
Exploits0References7
Rows per page
Query Builder