Lucene search
K

4 matches found

Positive Technologies
Positive Technologies
added 2022/06/22 12:0 a.m.6 views

PT-2022-22066 · Jenkins · Jenkins Sauce Ondemand Plugin +1

Name of the Vulnerable Software and Affected Versions: Jenkins Sauce OnDemand Plugin versions 1.204 and earlier Description: The issue results in a stored cross-site scripting XSS vulnerability, which can be exploited by attackers with Item/Configure permission. This occurs because the plugin doe...

8CVSS5.7AI score0.00602EPSS
Exploits0References5
Positive Technologies
Positive Technologies
added 2022/06/22 12:0 a.m.6 views

PT-2022-22064 · Jenkins +1 · Jenkins +2

Name of the Vulnerable Software and Affected Versions: Jenkins Repository Connector Plugin versions 2.2.0 and earlier Description: The issue is a stored cross-site scripting XSS vulnerability that occurs because the Jenkins Repository Connector Plugin does not escape the name and description of...

8CVSS5.7AI score0.00753EPSS
Exploits0References6
OSV
OSV
added 2018/05/15 9:29 p.m.17 views

CVE-2017-2604

In Jenkins before versions 2.44, 2.32.2 low privilege users were able to act on administrative monitors due to them not being consistently protected by permission checks SECURITY-371...

4.3CVSS5AI score0.0135EPSS
Exploits0References4
OSV
OSV
added 2018/04/11 4:29 p.m.15 views

CVE-2017-2599

Jenkins before versions 2.44 and 2.32.2 is vulnerable to an insufficient permission check. This allows users with permissions to create new items e.g. jobs to overwrite existing items they don't have access to SECURITY-321...

5.4CVSS5.7AI score0.01138EPSS
Exploits0References4
Rows per page
Query Builder