Lucene search
K

24 matches found

cnvd
cnvd
added 2018/01/30 12:0 a.m.33 views

CloudBees Jenkins Information Disclosure Vulnerability (CNVD-2018-03335)

CloudBees Jenkins formerly known as Hudson Labs is the United States CloudBees company's set of Java-based development of continuous integration tools , it is mainly used to monitor the continuous software version of the release/testing project and some of the timed execution of the task . A...

4.3CVSS7AI score0.0083EPSS
Exploits0References1
cnvd
cnvd
added 2018/01/30 12:0 a.m.6 views

CloudBees Jenkins Information Disclosure Vulnerability (CNVD-2018-03332)

CloudBees Jenkins formerly known as Hudson Labs is the United States CloudBees company's set of Java-based development of continuous integration tools , it is mainly used to monitor the continuous software version of the release/testing project and some of the timed execution of the task . A...

4.3CVSS7AI score0.01008EPSS
Exploits0References1
hackerone
hackerone
added 2017/04/21 7:35 p.m.61 views

Phabricator: IRC-Bot exposes information

You can setup the IRC-Bot, and set it into private channels, so that it posts only information about tasks into private channels. Example: T698 T698: Task title - https://url.example.org/T698 The problem is, that, if the bot is online in IRC, you can send him task numbers via private messages, an...

1.4AI score
Exploits0
prion
prion
added 2017/01/18 10:59 p.m.8 views

Cross site request forgery (csrf)

RESTful web services in CA Service Desk Manager 12.9 and CA Service Desk Management 14.1 might allow remote authenticated users to read or modify task information by leveraging incorrect permissions applied to a RESTful request...

5.5CVSS6.5AI score0.01557EPSS
Exploits0References3Affected Software2
Rows per page
Query Builder