MODERATE

[apache-airflow] Apache Airflow vulnerable to open redirect

In Apache Airflow 2.3.0 through 2.3.4, there was an open redirect in the webserver’s /confirm endpoint.
References

https://nvd.nist.gov/vuln/detail/CVE-2022-40754
https://github.com/apache/airflow/pull/26409
https://github.com/pypa/advisory-database/t…

[OctoPrint] OctoPrint vulnerable to Insufficient Session Expiration.

If an attacker comes into the possession of a victim’s OctoPrint session cookie through whatever means, the attacker can use this cookie to authenticate as long as the victim’s account exists. This issue is fixed in version 1.8.3.
References

https://n…

[pimcore/pimcore] Pimcore vulnerable to cross site scripting

If an attacker can control a script that is executed in the victim’s browser, then they can typically fully compromise that user. Amongst other things, the attacker can perform any action within the application that the user can perform; view any infor…

[org.jenkins-ci.plugins:bigpanda-jenkins] Jenkins BigPanda Notifier Plugin stores BigPanda API key unencrypted

Jenkins BigPanda Notifier Plugin 1.4.0 and earlier stores the BigPanda API key unencrypted in its global configuration file on the Jenkins controller where they can be viewed by users with access to the Jenkins controller file system.
References

https…

[org.jenkins-ci.plugins:wildfly-deployer] Jenkins WildFly Deployer Plugin vulnerable to path traversal

Jenkins WildFly Deployer Plugin 1.0.2 and earlier implements functionality that allows agent processes to read arbitrary files on the Jenkins controller file system.
References

https://nvd.nist.gov/vuln/detail/CVE-2022-41235
https://www.jenkins.io/sec…

[craftcms/cms] Craft CMS Cross-site Scripting vulnerability

Craft CMS 4.2.0.1 is affected by Cross Site Scripting (XSS) in the file src/web/assets/cp/src/js/BaseElementSelectInput.js and in specific on the line label: elementInfo.label.
References

https://nvd.nist.gov/vuln/detail/CVE-2022-37246
https://github….

[org.jenkins-ci.plugins:anchore-container-scanner] Jenkins Anchore Container Image Scanner Plugin vulnerable to cross site scripting

Jenkins Anchore Container Image Scanner Plugin 1.0.24 and earlier does not escape content provided by the Anchore engine API, resulting in a stored cross-site scripting (XSS) vulnerability exploitable by attackers able to control API responses by Ancho…

[org.jenkins-ci.plugins:extreme-feedback] Jenkins extreme-feedback Plugin vulnerable to Missing Authorization

A missing permission check in Jenkins extreme-feedback Plugin 1.7 and earlier allows attackers with Overall/Read permission to discover information about job names attached to lamps, discover MAC and IP addresses of existing lamps, and rename lamps.
Re…

[io.jenkins.plugins:cavisson-ns-nd-integration] Jenkins NS-ND Integration Performance Publisher Plugin vulnerable to Cross-site Scripting

Jenkins NS-ND Integration Performance Publisher Plugin 4.8.0.134 and earlier does not escape configuration options of the Execute NetStorm/NetCloud Test build step, resulting in a stored cross-site scripting (XSS) vulnerability exploitable by attackers…

[com.meowlomo.jenkins:scm-httpclient] Jenkins SCM HttpClient Plugin Missing Authorization

A missing permission check in Jenkins SCM HttpClient Plugin 1.5 and earlier allows attackers with Overall/Read permission to connect to an attacker-specified HTTP server using attacker-specified credentials IDs obtained through another method, capturin…

トピトピニュース

Featured

[org.keycloak:keycloak-core] Stored Cross-Site Scripting (XSS) in Keycloak via groups dropdown

[baserproject/basercms] baserproject/basercms vulnerable to cross-site scripting (XSS) vulnerability

[org.postgresql:postgresql] TemporaryFolder on unix-like systems does not limit access to created files

[com.h2database:h2] Password exposure in H2 Database