Known Vulnerabilities for Script Security by Jenkins
Listed below are 10 of the newest known vulnerabilities associated with "Script Security" by "Jenkins".
These CVEs are retrieved based on exact matches on listed software, hardware, and vendor information (CPE data) as well as a keyword search to ensure the newest vulnerabilities with no officially listed software information are still displayed.
Data on known vulnerable versions is also displayed based on information from known CPEs
Known Vulnerabilities
| CVE | Shortened Description | Severity | Publish Date | Last Modified |
|---|---|---|---|---|
| CVE-2023-32689 | Parse Server is an open source backend that can be deployed to any infrastructure that can run Node.js. Versions prior to 5.4... | Not Provided | 2023-05-30 | 2023-05-30 |
| CVE-2023-31045 | ** DISPUTED ** A stored Cross-site scripting (XSS) issue in Text Editors and Formats in Backdrop CMS before 1.24.2 allows rem... | Not Provided | 2023-04-24 | 2023-04-24 |
| CVE-2023-29201 | XWiki Commons are technical libraries common to several other top level XWiki projects. The "restricted" mode of the HTML cle... | Not Provided | 2023-04-15 | 2023-04-15 |
| CVE-2023-27592 | Miniflux is a feed reader. Since v2.0.25, Miniflux will automatically proxy images served over HTTP to prevent mixed content ... | Not Provided | 2023-03-17 | 2023-03-17 |
| CVE-2023-22654 | Client-side enforcement of server-side security issue exists in T&D Corporation and ESPEC MIC CORP. data logger products, whi... | Not Provided | 2023-05-23 | 2023-05-23 |
| CVE-2023-0527 | A vulnerability was found in PHPGurukul Online Security Guards Hiring System 1.0 and classified as problematic. Affected by t... | Not Provided | 2023-01-27 | 2023-06-01 |
| CVE-2022-46873 | Because Firefox did not implement the unsafe-hashes CSP directive, an attacker who was able to inject markup int...
|
Not Provided | 2022-12-22 | 2023-05-03 |
| CVE-2020-2279 | A sandbox bypass vulnerability in Jenkins Script Security Plugin 1.74 and earlier allows attackers with permission to define ... | 9.9 - CRITICAL | 2020-09-23 | 2020-09-28 |
| CVE-2020-2190 | Jenkins Script Security Plugin 1.72 and earlier does not correctly escape pending or approved classpath entries on the In-pro... | 5.4 - MEDIUM | 2020-06-03 | 2020-06-03 |
| CVE-2020-2135 | Sandbox protection in Jenkins Script Security Plugin 1.70 and earlier could be circumvented through crafted method calls on o... | 8.8 - HIGH | 2020-03-09 | 2020-03-10 |
Known Affected Configurations (CPE V2.3)
| Type | Vendor | Product | Version | Update | Edition | Language |
|---|---|---|---|---|---|---|
| Application | Jenkins | Script Security | 1.9 | All | All | All |
| Application | Jenkins | Script Security | 1.8 | All | All | All |
| Application | Jenkins | Script Security | 1.74 | All | All | All |
| Application | Jenkins | Script Security | 1.73 | All | All | All |
| Application | Jenkins | Script Security | 1.72 | All | All | All |
| Application | Jenkins | Script Security | 1.71 | All | All | All |
| Application | Jenkins | Script Security | 1.70 | All | All | All |
| Application | Jenkins | Script Security | 1.7 | All | All | All |
| Application | Jenkins | Script Security | 1.69 | All | All | All |
| Application | Jenkins | Script Security | 1.68 | All | All | All |
| Application | Jenkins | Script Security | 1.67 | All | All | All |
| Application | Jenkins | Script Security | 1.66.4 | All | All | All |
| Application | Jenkins | Script Security | 1.66.2 | All | All | All |
| Application | Jenkins | Script Security | 1.66.1 | All | All | All |
| Application | Jenkins | Script Security | 1.66 | All | All | All |
| Application | Jenkins | Script Security | 1.65 | All | All | All |
| Application | Jenkins | Script Security | 1.64 | All | All | All |
| Application | Jenkins | Script Security | 1.63.1 | All | All | All |
| Application | Jenkins | Script Security | 1.63 | All | All | All |
| Application | Jenkins | Script Security | 1.62 | All | All | All |
Popular searches for Script Security
Script Security
plugins.jenkins.io/script-securityScript Security Allows Jenkins Y W administrators to control what in-process scripts can be run by less-privileged users.
wiki.jenkins.io/display/JENKINS/Script+Security+Plugin wiki.jenkins-ci.org/display/JENKINS/Script+Security+Plugin wiki.jenkins.io/display/JENKINS/Script+Security+Plugin plugins.jenkins.io/script-security/?replyToComment=138457037 plugins.jenkins.io/script-security/?replyToComment=138447120 plugins.jenkins.io/script-security/?replyToComment=138457012 plugins.jenkins.io/script-security/?replyToComment=138457018 plugins.jenkins.io/script-security/?replyToComment=135468837 Scripting language Plug-in (computing) Jenkins (software) User (computing) Sandbox (computer security) Method (computer programming) System administrator Apache Groovy Whitelisting Computer configuration Computer security Command-line interface Privilege (computing) File system permissions Application programming interface Directory (computing) CloudBees Library (computing) Object (computer science) User interfaceSecurity Realm by custom script
plugins.jenkins.io/script-realmSecurity Realm by custom script This plugin adds authentication via user-defined script , in additon to the orignal script &-realm, this one also supports groups.
wiki.jenkins-ci.org/display/JENKINS/Script+Security+Realm Scripting language Plug-in (computing) Authentication User (computing) Jenkins (software) Environment variable Password Computer security Exit status User-defined function Bourne shell Lexical analysis Security Documentation System administrator Realm (database) Google Summer of Code Delimiter Superuser Echo (command)