[Forgot Password]
Login  Register Subscribe

24547

 
 

132763

 
 

125989

 
 

909

 
 

104883

 
 

152

 
 
Paid content will be excluded from the download.

Filter
Matches : 10212 Download | Alert*

The host is installed with Jenkins LTS before 2.19.3 or Jenkins rolling release before 2.32 and is prone to an arbitrary code execution vulnerability. A flaw is present in the application, which fails to properly handle crafted serialized java object. Successful exploitation could allow attackers to execute arbitrary code via a crafted serialized java object, which triggers an ldap query to a thir ...

The host is installed with Jenkins LTS before 1.651.2 or Jenkins rolling release before 2.3 and is prone to a privilege escalation vulnerability. A flaw is present in the application, which fails to properly handle issues in the API URL. Successful exploitation could allow remote authenticated users with extended read permission for the master node to obtain sensitive information about the global ...

The host is installed with Jenkins LTS before 1.651.2 or Jenkins rolling release before 2.3 and is prone to an open redirect vulnerability. A flaw is present in the application, which fails to properly handle scheme-relative URLs. Successful exploitation could allow remote attackers to redirect users to arbitrary web sites and conduct phishing attacks.

The host is installed with Jenkins LTS before 1.651.2 or Jenkins rolling release before 2.3 and is prone to a privilege escalation vulnerability. A flaw is present in the application, which fails to properly handle a missing permissions check. Successful exploitation could allow remote authenticated users to trigger updating of update site metadata.

The host is installed with Jenkins LTS before 1.651.2 or Jenkins rolling release before 2.3 and is prone to an information disclosure vulnerability. A flaw is present in the application, which fails to properly handle permission issues. Successful exploitation could allow remote authenticated users with extended read access to obtain sensitive password information by reading a job configuration.

The host is installed with Jenkins LTS before 1.651.2 or Jenkins rolling release before 2.3 and is prone to an information disclosure vulnerability. A flaw is present in the application, which fails to properly handle permission issues. Successful exploitation could allow attackers to obtain sensitive plugin installation information by leveraging missing permissions checks in unspecified XML/JSON ...

The host is installed with Jenkins LTS before 1.651.2 or Jenkins rolling release before 2.3 and is prone to a denial of service vulnerability. A flaw is present in the application, which fails to properly handle users with multiple accounts. Successful exploitation could allow attackers to cause a denial of service by editing the full name.

The host is installed with Jenkins LTS before 1.651.2 or Jenkins rolling release before 2.3 and is prone to an arbitrary code execution vulnerability. A flaw is present in the application, which fails to properly handle issues in build environment. Successful exploitation could allow remote authenticated users to inject arbitrary build parameters into the build environment via environment variable ...

The host is installed with Jenkins LTS before 1.642.2 or Jenkins rolling release before 1.650 and is prone to an arbitrary code execution vulnerability. A flaw is present in the application, which fails to properly handle multiple unspecified API endpoints. Successful exploitation could allow remote authenticated users to execute arbitrary code via serialized data in an XML file.

The host is installed with Jenkins LTS before 1.642.2 or Jenkins rolling release before 1.650 and is prone to a brute force attack vulnerability. A flaw is present in the application, which fails to properly handle the usage of algorithm to verify CSRF tokens. Successful exploitation could allow attackers to bypass a csrf protection mechanism via a brute-force approach.


Pages:      Start    1    2    3    4    5    6    7    8    9    10    11    12    13    14    ..   1021

© SecPod Technologies