Web Application Firewall

Information Disclosure Vulnerability in Jenkins Plugin CVE-2019-1010241

Jenkins Credentials Binding plugin is under attack to an info: disclosure vulnerability.

Illigal use of this issue to gain control over sensitive informations that may leed to further attacks.

Jenkins Credentials Binding plugin version 1.17 is vulnerable.

Bugtraq ID :	109320
Class :	Design Error
CVE:	CVE-2019-1010241
Remote :	Yes
Local :	No
Published :	May 01 2019 12:00AM
Updated :	July 26 2019 06:00AM
Credit :	Marcelo Sacchetin and Aditya Balapure

Vulnerable :

Redhat OpenShift Container Platform 4.1
Redhat OpenShift Container Platform 3.9
Redhat OpenShift Container Platform 3.11
Redhat OpenShift Container Platform 3.10
Jenkins Credentials Binding 1.17

CVE-2023-1803 : REDLINE ROUTER PRIOR 7.17 AUTHENTICATION BYPASS BY ALTERNATE NAME

CVE-2023-30547 : VM2 UP TO 3.9.16 HANDLEEXCEPTION INJECTION

What Is Account Aggregation And How It Can Be Prevented?

zzcms 2018 template_user.php ml/title code injection

August 26, 2021 No Comments

A vulnerability was found in zzcms 2018 (Content Management System) and classified as critical. This issue affects an unknown function

ZyXEL VPN2S 1.12 Web Server path traversal

September 29, 2021 No Comments

A vulnerability classified as problematic was found in ZyXEL VPN2S 1.12. Affected by this vulnerability is an unknown part of

Zyxel VPN2S 1.12 CGI Program os command injection

September 29, 2021 No Comments

A vulnerability has been found in Zyxel VPN2S 1.12 and classified as critical. This vulnerability affects some unknown processing of

Zyxel USG/USG Flex/Zywall/ATP/VPN up to 4.64 Web-based Management Interface improper authentication

July 2, 2021 No Comments

A vulnerability was found in Zyxel USG, USG Flex, Zywall, ATP and VPN up to 4.64 (Firewall Software). It has

ZyXEL GS1900-8 2.60 LLDP Packet cross site scripting

July 26, 2021 No Comments

A vulnerability was found in ZyXEL GS1900-8 2.60. It has been classified as problematic. This affects an unknown code of

Zynamics BinDiff up to 6 i64 File use after free

June 30, 2021 No Comments

A vulnerability, which was classified as critical, has been found in Zynamics BinDiff up to 6. This issue affects an

When To Use Multicloud?

April 16, 2024 No Comments

Multicloud involves utilizing two or more cloud service providers, such as Amazon Web Services (AWS), Microsoft Azure, and Google Cloud

CVE-2024-26817 : LINUX KERNEL UP TO 6.8.5 AMDKFD KZALLOC INTEGER OVERFLOW

April 15, 2024 No Comments

Description In the Linux kernel, the following vulnerability has been resolved: amdkfd: use calloc instead of kzalloc to avoid integer

CVE-2024-3400 : PALO ALTO NETWORKS PAN-OS GLOBALPROTECT COMMAND INJECTION

April 12, 2024 No Comments

Description A command injection vulnerability in the GlobalProtect feature of Palo Alto Networks PAN-OS software for specific PAN-OS versions and