|
249381
|
6.1 |
MEDIUM
Network
|
jenkins
|
cppncss
|
A cross-site scripting vulnerability exists in Jenkins CppNCSS Plugin 1.1 and earlier in AbstractProjectAction/index.jelly that allow an attacker to craft links to Jenkins URLs that run arbitrary Jav…
|
CWE-79
Cross-site Scripting
|
CVE-2018-1000108
|
2024-11-21 12:39 |
2018-03-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
249382
|
6.5 |
MEDIUM
Network
|
jenkins
|
job_and_node_ownership
|
An improper authorization vulnerability exists in Jenkins Job and Node Ownership Plugin 0.11.0 and earlier in OwnershipDescription.java, JobOwnerJobProperty.java, and OwnerNodeProperty.java that allo…
|
CWE-863
Incorrect Authorization
|
CVE-2018-1000107
|
2024-11-21 12:39 |
2018-03-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
249383
|
5.4 |
MEDIUM
Network
|
jenkins
|
gerrit_trigger
|
An improper authorization vulnerability exists in Jenkins Gerrit Trigger Plugin 2.27.4 and earlier in GerritManagement.java, GerritServer.java, and PluginImpl.java that allows an attacker with Overal…
|
CWE-863
Incorrect Authorization
|
CVE-2018-1000106
|
2024-11-21 12:39 |
2018-03-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
249384
|
4.3 |
MEDIUM
Network
|
jenkins
|
gerrit_trigger
|
An improper authorization vulnerability exists in Jenkins Gerrit Trigger Plugin 2.27.4 and earlier in GerritManagement.java, GerritServer.java, and PluginImpl.java that allows an attacker with Overal…
|
CWE-863
Incorrect Authorization
|
CVE-2018-1000105
|
2024-11-21 12:39 |
2018-03-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
249385
|
7.8 |
HIGH
Local
|
jenkins
|
coverity
|
A plaintext storage of a password vulnerability exists in Jenkins Coverity Plugin 1.10.0 and earlier in CIMInstance.java that allows an attacker with local file system access or control of a Jenkins …
|
CWE-522
Insufficiently Protected Credentials
|
CVE-2018-1000104
|
2024-11-21 12:39 |
2018-03-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
249386
|
7.5 |
HIGH
Network
|
teluu
debian
|
pjsip
debian_linux
|
Teluu PJSIP version 2.7.1 and earlier contains a Access of Null/Uninitialized Pointer vulnerability in pjmedia SDP parsing that can result in Crash. This attack appear to be exploitable via Sending a…
|
CWE-824
Access of Uninitialized Pointer
|
CVE-2018-1000099
|
2024-11-21 12:39 |
2018-03-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
249387
|
7.5 |
HIGH
Network
|
teluu
debian
|
pjsip
debian_linux
|
Teluu PJSIP version 2.7.1 and earlier contains a Integer Overflow vulnerability in pjmedia SDP parsing that can result in Crash. This attack appear to be exploitable via Sending a specially crafted m…
|
CWE-190
Integer Overflow or Wraparound
|
CVE-2018-1000098
|
2024-11-21 12:39 |
2018-03-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
249388
|
7.8 |
HIGH
Local
|
debian
canonical
gnu
|
debian_linux
ubuntu_linux
sharutils
|
Sharutils sharutils (unshar command) version 4.15.2 contains a Buffer Overflow vulnerability in Affected component on the file unshar.c at line 75, function looks_like_c_code. Failure to perform chec…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2018-1000097
|
2024-11-21 12:39 |
2018-03-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
249389
|
8.1 |
HIGH
Network
|
tiny-json-http_project
|
tiny-json-http
|
brianleroux tiny-json-http version all versions since commit 9b8e74a232bba4701844e07bcba794173b0238a8 (Oct 29 2016) contains a Missing SSL certificate validation vulnerability in The libraries core f…
|
CWE-295
Improper Certificate Validation
|
CVE-2018-1000096
|
2024-11-21 12:39 |
2018-03-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
249390
|
4.8 |
MEDIUM
Network
|
redhat
|
ovirt-engine
|
oVirt version 4.2.0 to 4.2.2 contains a Cross Site Scripting (XSS) vulnerability in the name/description of VMs portion of the web admin application. This vulnerability appears to have been fixed in …
|
CWE-79
Cross-site Scripting
|
CVE-2018-1000095
|
2024-11-21 12:39 |
2018-03-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
