[Forgot Password]
Login  Register Subscribe

30479

 
 

423868

 
 

251139

 
 

909

 
 

196159

 
 

282

 
 
 
Paid content will be excluded from the download.

Filter
Matches : 26832 Download | Alert*

The host is installed with Jenkins LTS before 2.19.3 or Jenkins rolling release before 2.32 and is prone to an arbitrary code execution vulnerability. A flaw is present in the application, which fails to properly handle crafted serialized java object. Successful exploitation could allow attackers to execute arbitrary code via a crafted serialized java object, which triggers an ldap query to a thir ...

The host is installed with Jenkins LTS before 1.651.2 or Jenkins rolling release before 2.3 and is prone to an information disclosure vulnerability. A flaw is present in the application, which fails to properly handle issues in the API URL. Successful exploitation could allow remote authenticated users with extended read permission for the master node to obtain sensitive information about the glob ...

The host is installed with Jenkins LTS before 1.651.2 or Jenkins rolling release before 2.3 and is prone to multiple open redirect vulnerabilities. The flaws are present in the application, which fails to properly handle scheme-relative URLs. Successful exploitation could allow remote attackers to redirect users to arbitrary web sites and conduct phishing attacks.

The host is installed with Jenkins LTS before 1.651.2 or Jenkins rolling release before 2.3 and is prone to a denial of service vulnerability. A flaw is present in the application, which fails to properly handle a missing permissions check. Successful exploitation could allow remote authenticated users to trigger updating of update site metadata.

The host is installed with Jenkins LTS before 1.651.2 or Jenkins rolling release before 2.3 and is prone to an information disclosure vulnerability. A flaw is present in the application, which fails to properly handle permission issues. Successful exploitation could allow remote authenticated users with extended read access to obtain sensitive password information by reading a job configuration.

The host is installed with Jenkins LTS before 1.651.2 or Jenkins rolling release before 2.3 and is prone to an information disclosure vulnerability. A flaw is present in the application, which fails to properly handle permission issues. Successful exploitation could allow attackers to obtain sensitive plugin installation information by leveraging missing permissions checks in unspecified XML/JSON ...

The host is installed with Jenkins LTS before 1.651.2 or Jenkins rolling release before 2.3 and is prone to a denial of service vulnerability. A flaw is present in the application, which fails to properly handle users with multiple accounts. Successful exploitation could allow attackers to cause a denial of service by editing the full name.

The host is installed with Jenkins LTS before 1.651.2 or Jenkins rolling release before 2.3 and is prone to an arbitrary code execution vulnerability. A flaw is present in the application, which fails to properly handle issues in build environment. Successful exploitation could allow remote authenticated users to inject arbitrary build parameters into the build environment via environment variable ...

The host is installed with Jenkins LTS before 1.642.2 or Jenkins rolling release before 1.650 and is prone to an arbitrary code execution vulnerability. A flaw is present in the application, which fails to properly handle multiple uspecified API endpoints. Successful exploitation could allow remote authenticated users to execute arbitrary code via serialized data in an XML file.

The host is installed with Jenkins LTS before 1.642.2 or Jenkins rolling release before 1.650 and is prone to a brute force attack vulnerability. A flaw is present in the application, which fails to properly handle the usage of algorithm to verify CSRF tokens. Successful exploitation could allow attackers to bypass a csrf protection mechanism via a brute-force approach.


Pages:      Start    1323    1324    1325    1326    1327    1328    1329    1330    1331    1332    1333    1334    1335    1336    ..   2683

© SecPod Technologies