Lucene search
+L

29 matches found

Vulnrichment
Vulnrichment
added 2025/03/05 10:33 p.m.9 views

CVE-2025-27624

A cross-site request forgery CSRF vulnerability in Jenkins 2.499 and earlier, LTS 2.492.1 and earlier allows attackers to have users toggle their collapsed/expanded status of sidepanel widgets e.g., Build Queue and Build Executor Status widgets...

7.1AI score0.0041EPSS
Exploits0References1
Snyk
Snyk
added 2022/05/13 1:30 a.m.4 views

Information Exposure

Overview org.jenkins-ci.main:jenkins-core is an open source automation server. Affected versions of this package are vulnerable to Information Exposure via the sidepanel widgets in the CLI command overview and help pages. An attacker can obtain sensitive information by making a direct request to...

6.9CVSS6.8AI score0.02064EPSS
Exploits0References2
Github Security Blog
Github Security Blog
added 2022/05/13 1:30 a.m.8 views

Jenkins has Information Disclosure via Sidepanel Widget

The sidepanel widgets in the CLI command overview and help pages in Jenkins before 1.638 and LTS before 1.625.2 allow remote attackers to obtain sensitive information via a direct request to the pages...

5CVSS6.3AI score0.02064EPSS
Exploits0References7Affected Software1
OSV
OSV
added 2022/05/13 1:30 a.m.3 views

GHSA-4653-RMCH-3G2G Jenkins has Information Disclosure via Sidepanel Widget

The sidepanel widgets in the CLI command overview and help pages in Jenkins before 1.638 and LTS before 1.625.2 allow remote attackers to obtain sensitive information via a direct request to the pages...

6.9CVSS7.2AI score0.02064EPSS
Exploits0References7
RedHat Linux
RedHat Linux
added 2016/03/22 4:49 p.m.6 views

jenkins: Information disclosure via sidepanel (SECURITY-192)

The sidepanel widgets in the CLI command overview and help pages in Jenkins before 1.638 and LTS before 1.625.2 allow remote attackers to obtain sensitive information via a direct request to the pages...

5CVSS7.4AI score0.02064EPSS
Exploits0References5
RedHat Linux
RedHat Linux
added 2016/01/26 7:12 p.m.6 views

jenkins: Information disclosure via sidepanel (SECURITY-192)

The sidepanel widgets in the CLI command overview and help pages in Jenkins before 1.638 and LTS before 1.625.2 allow remote attackers to obtain sensitive information via a direct request to the pages...

5CVSS7.4AI score0.02064EPSS
Exploits0References5
CNVD
CNVD
added 2015/11/26 12:0 a.m.48 views

CloudBees Jenkins Information Disclosure Vulnerability (CNVD-2015-07825)

CloudBees Jenkins is the open source continuous integration server. A security vulnerability exists in the sidepanel widget in the CLI command overview and help pages of CloudBees Jenkins 1.638, LTS before 1.625.2, which allows remote attackers to obtain sensitive information by directly requesti...

5CVSS6.8AI score0.02064EPSS
Exploits0References1
Prion
Prion
added 2015/11/25 8:59 p.m.19 views

Information disclosure

The sidepanel widgets in the CLI command overview and help pages in Jenkins before 1.638 and LTS before 1.625.2 allow remote attackers to obtain sensitive information via a direct request to the pages...

5CVSS6.5AI score0.02064EPSS
Exploits0References3Affected Software2
seebug.org
seebug.org
added 2009/12/14 12:0 a.m.23 views

Automne.ws CMS 4.0.0rc2 Multiple RFI Vulnerability

No description provided by source. Automne.ws CMS 4.0.0rc2 Multiple RFI Vulnerability Created By 1nd0n3s14n l4m3r c -- 14/12/2oo9 No Sanitize Variable $SERVER"DOCUMENTROOT" automne/imagezoom.php?DOCUMENTROOT=Shell automne/isalive.php?DOCUMENTROOT=Shell automne/admin/backtrace.php?DOCUMENTROOT=She...

7.1AI score
Exploits0
Rows per page
Query Builder