Pull requests: github/advisory-database
Author
Label
Projects
Milestones
Reviews
Assignee
Sort
Pull requests list
[GHSA-p46c-m4j7-mjvq] Mingsoft MCMS vulnerable to Cross-site Scripting
#1140
opened Dec 8, 2022 by
SBVels
Loading…
[GHSA-qq6h-5g6j-q3cm] sweetalert2 v11.4.9 and above contains hidden functionality
#1139
opened Dec 8, 2022 by
GenkaOk
Loading…
[GHSA-q5j9-f95w-f4pr] TERASOLUNA Server Framework vulnerable to ClassLoader manipulation
#1137
opened Dec 8, 2022 by
kominen0214
Loading…
[GHSA-99mq-hw5m-gwjj] Jenkins Coverity Plugin is missing authorization, leading to Credential Capture
#1135
opened Dec 7, 2022 by
NotMyFault
Loading…
[GHSA-5x3f-7m52-9cgf] Jenkins Coverity Plugin vulnerable to cross-site request forgery (CSRF)
#1134
opened Dec 7, 2022 by
NotMyFault
Loading…
[GHSA-m485-79jq-cxx7] Jenkins Google Cloud Backup Plugin allows attackers with Overall/Read permission to request a manual backup
#1133
opened Dec 7, 2022 by
NotMyFault
Loading…
[GHSA-hm53-hrhh-gwfq] Openstack Heat Plugin does not perform permission checks in methods implementing form validation
#1132
opened Dec 7, 2022 by
NotMyFault
Loading…
[GHSA-fqhm-fjjv-7q8x] Jenkins Openstack Heat Plugin CSRF
#1131
opened Dec 7, 2022 by
NotMyFault
Loading…
[GHSA-78fg-pvgg-6g3r] OpenShift Deployer Plugin does not perform permission checks in methods implementing form validation
#1130
opened Dec 7, 2022 by
NotMyFault
Loading…
[GHSA-5mv2-vqq7-mq5h] Jenkins OpenShift Deployer Plugin allows attackers to check for file path, upload SSH key file
#1129
opened Dec 7, 2022 by
NotMyFault
Loading…
[GHSA-jvjh-9r4q-8q5q] Jenkins OpenShift Deployer Plugin does not perform a permission check in a method implementing form validation
#1128
opened Dec 7, 2022 by
NotMyFault
Loading…
[GHSA-8528-c6m6-gppm] Jenkins OpenShift Deployer Plugin allows connection to attacker-specified URL using attacker-specified credentials
#1127
opened Dec 7, 2022 by
NotMyFault
Loading…
[GHSA-8294-mv9c-7m5h] Jenkins Maven Metadata Plugin for Jenkins CI server...
#1126
opened Dec 7, 2022 by
NotMyFault
Loading…
[GHSA-jvvx-hmmr-rhgg] Jenkins Dynamic Extended Choice Parameter Plugin 1.0.1...
#1125
opened Dec 7, 2022 by
NotMyFault
Loading…
[GHSA-2qh6-hhvv-m2ww] Jenkins HTTP Request Plugin stores HTTP Request passwords unencrypted
#1124
opened Dec 7, 2022 by
NotMyFault
Loading…
[GHSA-57f2-52wj-7vj6] Jenkins Compuware ISPW Operations Plugin before 1.0.9 vulnerable to protection mechanism failure
#1123
opened Dec 7, 2022 by
NotMyFault
Loading…
[GHSA-75fc-fv3p-xh82] Jenkins Compuware Source Code Download is missing authorization
#1122
opened Dec 7, 2022 by
NotMyFault
Loading…
[GHSA-6xf5-c3cx-67pv] Jenkins CLIF Performance Testing Plugin allows attackers to replace arbitrary files with other content
#1121
opened Dec 7, 2022 by
NotMyFault
Loading…
[GHSA-j5qq-6rpm-qjgh] Jenkins Deployer Framework Plugin does not restrict application path of applications when configuring a deployment
#1120
opened Dec 7, 2022 by
NotMyFault
Loading…
[GHSA-cxf7-qrc5-9446] Remote shell execution vulnerability in image_processing
#1118
opened Dec 7, 2022 by
wonda-tea-coffee
Loading…
[GHSA-mxcc-7h5m-x57r] Jenkins GitHub plugin 1.34.4 uses weak webhook signature function
#1117
opened Dec 7, 2022 by
NotMyFault
Loading…
[GHSA-449w-c77c-vmf6] Jenkins Git Plugin before 4.11.4 provides unauthenticated attackers information about the existence of jobs
#1116
opened Dec 7, 2022 by
NotMyFault
Loading…
[GHSA-v878-67xw-grw2] Jenkins Git Plugin before 4.11.4 is missing a permission check
#1115
opened Dec 7, 2022 by
NotMyFault
Loading…
[GHSA-8xwj-2wgh-gprh] Jenkins Git Plugin before 4.11.4 allows attackers to trigger builds of jobs to use an attacker-specified Git repo
#1114
opened Dec 7, 2022 by
NotMyFault
Loading…
Previous Next
ProTip!
Updated in the last three days: updated:>2022-12-06.