364 matches found
CVE-2024-39729
creationtimestamp| type| source ---|---|--- 2024-07-15 05:58:23+00:00| seen| https://t.me/cvedetector/837...
Malicious code in telegram_bot-types (RubyGems)
--- -= Per source details. Do not edit below this line.=-...
Malicious code in telegram_bot-ruby (RubyGems)
--- -= Per source details. Do not edit below this line.=-...
MAL-2024-7039 Malicious code in telegram_bot-types (RubyGems)
--- -= Per source details. Do not edit below this line.=-...
MAL-2024-7038 Malicious code in telegram_bot-ruby (RubyGems)
--- -= Per source details. Do not edit below this line.=-...
Malicious code in telegram-bot_ruby (RubyGems)
--- -= Per source details. Do not edit below this line.=-...
MAL-2024-7035 Malicious code in telegram-bot_ruby (RubyGems)
--- -= Per source details. Do not edit below this line.=-...
Malicious code in telegram-bot_api (RubyGems)
--- -= Per source details. Do not edit below this line.=-...
Malicious code in telegram-bot_middleware (RubyGems)
--- -= Per source details. Do not edit below this line.=-...
MAL-2024-7034 Malicious code in telegram-bot_middleware (RubyGems)
--- -= Per source details. Do not edit below this line.=-...
MAL-2024-7033 Malicious code in telegram-bot_api (RubyGems)
--- -= Per source details. Do not edit below this line.=-...
New Rust-based Fickle Malware Uses PowerShell for UAC Bypass and Data Exfiltration
A new Rust-based information stealer malware called Fickle Stealer has been observed being delivered via multiple attack chains with the goal of harvesting sensitive information from compromised hosts. Fortinet FortiGuard Labs said it's aware of four different distribution methods -- namely VBA...
GHSA-94PR-W968-H923 Jenkins Telegram Bot Plugin stores the Telegram Bot token in plaintext
Jenkins Telegram Bot Plugin 1.4.0 and earlier stores the Telegram Bot token unencrypted in its global configuration file jenkinsci.plugins.telegrambot.TelegramBotGlobalConfiguration.xml on the Jenkins controller as part of its configuration. This token can be viewed by users with access to the...
Jenkins Telegram Bot Plugin stores the Telegram Bot token in plaintext
Jenkins Telegram Bot Plugin 1.4.0 and earlier stores the Telegram Bot token unencrypted in its global configuration file jenkinsci.plugins.telegrambot.TelegramBotGlobalConfiguration.xml on the Jenkins controller as part of its configuration. This token can be viewed by users with access to the...
CVE-2024-34147
Jenkins Telegram Bot Plugin 1.4.0 and earlier stores the Telegram Bot token unencrypted in its global configuration file on the Jenkins controller where it can be viewed by users with access to the Jenkins controller file system...
CVE-2024-34147
CVE-2024-34147 affects the Jenkins Telegram Bot Plugin (versions 1.4.0 and earlier). The vulnerability stems from storing the Telegram Bot token in plaintext in the global configuration file on the Jenkins controller (jenkinsci.plugins.telegrambot.TelegramBotGlobalConfiguration.xml), which can be...
CVE-2024-34147
Jenkins Telegram Bot Plugin 1.4.0 and earlier stores the Telegram Bot token unencrypted in its global configuration file on the Jenkins controller where it can be viewed by users with access to the Jenkins controller file system...
CVE-2024-34147
Jenkins Telegram Bot Plugin 1.4.0 and earlier stores the Telegram Bot token unencrypted in its global configuration file on the Jenkins controller where it can be viewed by users with access to the Jenkins controller file system...
Jenkins Plugin Telegram Bot 安全漏洞
Jenkins and Jenkins Plugin are both Jenkins open source products.Jenkins is a software application. An open source automation server Jenkins provides hundreds of plugins to support building, deploying, and automating any project.Jenkins Plugin is a software application. A security vulnerability...
PT-2024-25718 · Jenkins · Jenkins Telegram Bot Plugin
Name of the Vulnerable Software and Affected Versions: Jenkins Telegram Bot Plugin versions 1.4.0 and earlier Description: The issue concerns the storage of the Telegram Bot token in an unencrypted manner within the global configuration file on the Jenkins controller. This file can be accessed by...