Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
5.4
CVE-2020-2170
- EPSS 0.23%
- Published 25.03.2020 17:15:15
- Last modified 21.11.2024 05:24:51
Jenkins RapidDeploy Plugin 4.2 and earlier does not escape package names in the table of packages obtained from a remote server, resulting in a stored XSS vulnerability.
8.8
CVE-2020-2171
- EPSS 0.13%
- Published 25.03.2020 17:15:15
- Last modified 21.11.2024 05:24:51
Jenkins RapidDeploy Plugin 4.2 and earlier does not configure its XML parser to prevent XML external entity (XXE) attacks.
8.8
CVE-2019-16570
- EPSS 0.11%
- Published 17.12.2019 15:15:22
- Last modified 21.11.2024 04:30:50
A cross-site request forgery vulnerability in Jenkins RapidDeploy Plugin 4.1 and earlier allows attackers to connect to an attacker-specified web server.
4.3
CVE-2019-16571
- EPSS 0.03%
- Published 17.12.2019 15:15:22
- Last modified 21.11.2024 04:30:50
A missing permission check in Jenkins RapidDeploy Plugin 4.1 and earlier allows attackers with Overall/Read permission to connect to an attacker-specified web server.
1