EUVD-2023-2410

Malicious code in bioql PyPI...

Stored XSS vulnerability in Jenkins TAP Plugin

Jenkins TAP Plugin 2.3 and earlier does not escape TAP file contents, resulting in a stored cross-site scripting XSS vulnerability exploitable by attackers able to control TAP file contents...

GHSA-3VCR-579J-4X48 Stored XSS vulnerability in Jenkins TAP Plugin

Jenkins TAP Plugin 2.3 and earlier does not escape TAP file contents, resulting in a stored cross-site scripting XSS vulnerability exploitable by attackers able to control TAP file contents...

CVE-2023-41940

CVE-2023-41940 affects Jenkins TAP Plugin up to version 2.3. The vulnerability arises because TAP file contents are not escaped, allowing stored cross-site scripting (XSS) when an attacker can control the TAP content. The issue is explicitly described as a stored XSS in the TAP Plugin. Multiple c...

CVE-2023-41940

Jenkins TAP Plugin 2.3 and earlier does not escape TAP file contents, resulting in a stored cross-site scripting XSS vulnerability exploitable by attackers able to control TAP file contents...

CVE-2016-4986

Directory traversal vulnerability in the TAP plugin before 1.25 in Jenkins allows remote attackers to read arbitrary files via an unspecified parameter...

CVE-2016-4986

Directory traversal vulnerability in the TAP plugin before 1.25 in Jenkins allows remote attackers to read arbitrary files via an unspecified parameter...

CVE-2016-4986

The CVE-2016-4986 entry concerns a directory traversal in the Jenkins TAP Plugin (versions before 1.25). The vulnerability allows remote attackers to read arbitrary files via an unspecified parameter, exposing partial confidentiality and reflecting a network-accessible risk with low complexity an...