CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

EUVD•added 2025/10/03 8:7 p.m.•2 views

EUVD-2022-4847

Malicious code in bioql PyPI...

4.3CVSS4.8AI score0.0103EPSS

RedhatCVE•added 2025/05/22 10:26 a.m.•9 views

CVE-2019-10325

A cross-site scripting vulnerability in Jenkins Warnings NG Plugin 5.0.0 and earlier allowed attacker with Job/Configure permission to inject arbitrary JavaScript in build overview pages...

5.4CVSS5.9AI score0.01097EPSS

Exploits0References1

RedhatCVE•added 2025/05/22 10:24 a.m.•4 views

CVE-2019-10326

A cross-site request forgery vulnerability in Jenkins Warnings NG Plugin 5.0.0 and earlier allowed attackers to reset warning counts for future builds...

4.3CVSS6.7AI score0.0103EPSS

Exploits0References1

vulnersOsv•added 2023/05/16 6:30 p.m.•3 views

io.jenkins.blueocean:blueocean-pipeline-scm-api (>=1.27.4 <=1.27.5.1), io.jenkins.plugins:code-coverage-api (>=4.2.0 <=4.7.0) +12 more potentially affected by CVE-2023-32977 via org.jenkins-ci.plugins.workflow:workflow-job (>=0.1-beta-1 <=1292.v27d8cc3e2602)

org.jenkins-ci.plugins.workflow:workflow-job MAVEN version =0.1-beta-1, =1.27.4, =4.2.0, =1.17.vd2468d9c5e85, =0.1-beta-1, =1.14, =1.16.4 - org.jenkins-ci.plugins:gradle =2.12.0.1 - org.jenkins-ci.plugins:inline-pipeline =1.0.3 Source cves: CVE-2023-32977 Source advisory: OSV:GHSA-2WVV-PHHW-QVMC...

5.4CVSS6AI score0.00586EPSS

Exploits0

OSV•added 2022/05/24 10:0 p.m.•16 views

GHSA-WRR5-P265-7252 Jenkins Warnings NG Plugin Cross-site scripting vulnerability

A cross-site scripting vulnerability in Jenkins Warnings NG Plugin 5.0.0 and earlier allowed attacker with Job/Configure permission to inject arbitrary JavaScript in build overview pages...

5.4CVSS5.1AI score0.01097EPSS

Github Security Blog•added 2022/05/24 10:0 p.m.•18 views

Jenkins Warnings NG Plugin Cross-site scripting vulnerability

A cross-site scripting vulnerability in Jenkins Warnings NG Plugin 5.0.0 and earlier allowed attacker with Job/Configure permission to inject arbitrary JavaScript in build overview pages...

5.4CVSS5.9AI score0.01097EPSS

Exploits0References6Affected Software1

Github Security Blog•added 2022/05/24 10:0 p.m.•16 views

Jenkins Warnings NG Plugin cross-site request forgery vulnerability

A cross-site request forgery vulnerability in Jenkins Warnings NG Plugin 5.0.0 and earlier allowed attackers to reset warning counts for future builds...

4.3CVSS6.6AI score0.0103EPSS

Exploits0References6Affected Software1

OSV•added 2022/05/24 10:0 p.m.•11 views

GHSA-PX35-882C-47HW Jenkins Warnings NG Plugin cross-site request forgery vulnerability

A cross-site request forgery vulnerability in Jenkins Warnings NG Plugin 5.0.0 and earlier allowed attackers to reset warning counts for future builds...

4.3CVSS4.5AI score0.0103EPSS

OSV•added 2022/05/24 5:15 p.m.•30 views

GHSA-2RH4-XGMQ-63JP XXE vulnerability in Jenkins Parasoft Findings Plugin

Parasoft Findings Plugin implements a static analysis parser for various Parasoft products and integrates with Warnings Plugin 10.4.1 and earlier and Warnings NG Plugin 10.4.2 and newer. Parasoft Findings Plugin 10.4.3 and earlier does not configure its XML parser to prevent XML external entity X...

7.1CVSS6.8AI score0.00877EPSS

Exploits0References4

Github Security Blog•added 2022/05/24 5:15 p.m.•20 views

XXE vulnerability in Jenkins Parasoft Findings Plugin

7.1CVSS6.6AI score0.00877EPSS

Exploits0References4Affected Software1

Prion•added 2019/05/31 3:29 p.m.•15 views

Cross site scripting

A cross-site scripting vulnerability in Jenkins Warnings NG Plugin 5.0.0 and earlier allowed attacker with Job/Configure permission to inject arbitrary JavaScript in build overview pages...

3.5CVSS5.2AI score0.01097EPSS

OSV•added 2019/05/31 3:29 p.m.•13 views

CVE-2019-10325

A cross-site scripting vulnerability in Jenkins Warnings NG Plugin 5.0.0 and earlier allowed attacker with Job/Configure permission to inject arbitrary JavaScript in build overview pages...

5.4CVSS5.9AI score

Prion•added 2019/05/31 3:29 p.m.•15 views

Cross site request forgery (csrf)

A cross-site request forgery vulnerability in Jenkins Warnings NG Plugin 5.0.0 and earlier allowed attackers to reset warning counts for future builds...

4.3CVSS4.7AI score0.0103EPSS

OSV•added 2019/05/31 3:29 p.m.•15 views

CVE-2019-10326

A cross-site request forgery vulnerability in Jenkins Warnings NG Plugin 5.0.0 and earlier allowed attackers to reset warning counts for future builds...

4.3CVSS6.7AI score

NVD•added 2019/05/31 3:29 p.m.•15 views

CVE-2019-10326

A cross-site request forgery vulnerability in Jenkins Warnings NG Plugin 5.0.0 and earlier allowed attackers to reset warning counts for future builds...

4.3CVSS4.5AI score0.0103EPSS

CVE•added 2019/05/31 2:20 p.m.•208 views

CVE-2019-10326

The CVE-2019-10326 issue affects Jenkins Warnings NG Plugin ≤ 5.0.0. A cross-site request forgery (CSRF) vulnerability allows attackers to reset warning counts for future builds. Root cause: CSRF in the plugin’s handling of build-warnings state. Impact is limited to unauthorized state change of b...

4.3CVSS4.5AI score0.0103EPSS

Cvelist•added 2019/05/31 2:20 p.m.•25 views

CVE-2019-10325

A cross-site scripting vulnerability in Jenkins Warnings NG Plugin 5.0.0 and earlier allowed attacker with Job/Configure permission to inject arbitrary JavaScript in build overview pages...

5.1AI score0.01097EPSS

Cvelist•added 2019/05/31 2:20 p.m.•18 views

CVE-2019-10326

A cross-site request forgery vulnerability in Jenkins Warnings NG Plugin 5.0.0 and earlier allowed attackers to reset warning counts for future builds...

4.5AI score0.0103EPSS

CVE•added 2019/05/31 2:20 p.m.•180 views

CVE-2019-10325

CVE-2019-10325 affects the Jenkins Warnings NG Plugin, version 5.0.0 and earlier. The issue is described as a cross-site scripting vulnerability that allows an attacker with Job/Configure permission to inject arbitrary JavaScript into build overview pages. The underlying cause is a stored/xss-lik...

5.4CVSS5.1AI score0.01097EPSS