CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

13 matches found

EUVD•added 2025/10/03 8:7 p.m.•1 views

EUVD-2022-1889

Malicious code in bioql PyPI...

5.9CVSS5.9AI score0.00059EPSS

Exploits0References4

RedhatCVE•added 2025/05/22 10:38 p.m.•5 views

CVE-2022-28153

Jenkins SiteMonitor Plugin 0.6 and earlier does not escape URLs of sites to monitor in tooltips, resulting in a stored cross-site scripting XSS vulnerability exploitable by attackers with Item/Configure permission...

5.4CVSS5.4AI score0.00205EPSS

Exploits0References1

RedhatCVE•added 2025/05/22 10:24 a.m.•6 views

CVE-2019-10317

Jenkins SiteMonitor Plugin 0.5 and earlier disabled SSL/TLS and hostname verification globally for the Jenkins master JVM...

5.9CVSS6.8AI score0.00059EPSS

Exploits0References1

Github Security Blog•added 2022/05/24 4:44 p.m.•12 views

Jenkins SiteMonitor Plugin globally and unconditionally disables SSL/TLS certificate validation

Jenkins SiteMonitor Plugin unconditionally disables SSL/TLS certificate validation for the entire Jenkins controller JVM. SiteMonitor Plugin no longer does that. Instead, it now has an opt-in option to ignore SSL/TLS errors for each site check individually...

5.9CVSS6.8AI score0.00059EPSS

Exploits0References5Affected Software1

CNVD•added 2022/03/31 12:0 a.m.•18 views

Jenkins SiteMonitor Plugin Cross-Site Scripting Vulnerability

Jenkins and Jenkins Plugin are both Jenkins open source products.Jenkins is an application. An open source automation server, Jenkins provides hundreds of plugins to support building, deploying, and automating any project.Jenkins Plugin is an application.A cross-site scripting vulnerability exist...

5.4CVSS1.3AI score0.00205EPSS

Exploits0References1

Github Security Blog•added 2022/03/30 12:0 a.m.•24 views

Cross-site Scripting in Jenkins SiteMonitor Plugin

5.4CVSS2.5AI score0.00205EPSS

Exploits0References4Affected Software1

OSV•added 2022/03/29 1:15 p.m.•13 views

CVE-2022-28153

5.4CVSS5.4AI score

Exploits0References2

CVE•added 2022/03/29 12:31 p.m.•114 views

CVE-2022-28153

The CVE-2022-28153 entry refers to the Jenkins SiteMonitor Plugin (versions up to 0.6) where URLs shown in tooltips are not escaped, causing a stored XSS vulnerability. The impact is exploitable by attackers with Item/Configure permission; no remediation details are provided in the supplied docum...

5.4CVSS5.2AI score0.00205EPSS

Exploits0References2Affected Software1

NVD•added 2019/04/30 1:29 p.m.•8 views

CVE-2019-10317

Jenkins SiteMonitor Plugin 0.5 and earlier disabled SSL/TLS and hostname verification globally for the Jenkins master JVM...

5.9CVSS5.8AI score0.00059EPSS

Exploits0References3

OSV•added 2019/04/30 1:29 p.m.•8 views

CVE-2019-10317

Jenkins SiteMonitor Plugin 0.5 and earlier disabled SSL/TLS and hostname verification globally for the Jenkins master JVM...

5.9CVSS6.8AI score

Exploits0References3

Prion•added 2019/04/30 1:29 p.m.•17 views

Code injection

Jenkins SiteMonitor Plugin 0.5 and earlier disabled SSL/TLS and hostname verification globally for the Jenkins master JVM...

4.3CVSS5.7AI score0.00059EPSS

Exploits0References3Affected Software1

CVE•added 2019/04/30 12:25 p.m.•37 views

CVE-2019-10317

The CVE-2019-10317 entry affects the Jenkins SiteMonitor Plugin (version 0.5 and earlier), which unconditionally disabled SSL/TLS certificate validation and hostname verification for the Jenkins controller JVM. Root cause: the plugin’s behavior bypassed standard TLS checks globally, exposing the ...

5.9CVSS5.7AI score0.00059EPSS

Exploits0References3Affected Software1

Positive Technologies•added 2019/04/30 12:0 a.m.•1 views

PT-2019-11719 · Jenkins · Jenkins Sitemonitor Plugin +1

Name of the Vulnerable Software and Affected Versions: Jenkins SiteMonitor Plugin version 0.5 and earlier Description: The issue concerns the Jenkins SiteMonitor Plugin, which unconditionally disables SSL/TLS certificate validation for the entire Jenkins controller JVM. This means that the plugin...

5.9CVSS5.4AI score0.00059EPSS

Exploits0References7

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by