Max CVSS | 7.5 | Min CVSS | 2.1 | Total Count | 2 |
ID | CVSS | Summary | Last (major) update | Published | |
CVE-2013-2034 | 6.8 |
Multiple cross-site request forgery (CSRF) vulnerabilities in Jenkins before 1.514, LTS before 1.509.1, and Enterprise 1.466.x before 1.466.14.1 and 1.480.x before 1.480.4.1 allow remote attackers to hijack the authentication of administrators for re
|
13-02-2023 - 04:42 | 14-05-2014 - 19:55 | |
CVE-2013-2033 | 2.1 |
Cross-site scripting (XSS) vulnerability in Jenkins before 1.514, LTS before 1.509.1, and Enterprise 1.466.x before 1.466.14.1 and 1.480.x before 1.480.4.1 allows remote authenticated users with write permission to inject arbitrary web script or HTML
|
13-02-2023 - 04:42 | 10-04-2014 - 20:29 | |
CVE-2013-1808 | 4.3 |
Cross-site scripting (XSS) vulnerability in ZeroClipboard.swf and ZeroClipboard10.swf in ZeroClipboard before 1.0.8, as used in em-shorty, RepRapCalculator, Fulcrum, Django, aCMS, and other products, allows remote attackers to inject arbitrary web sc
|
13-02-2023 - 04:41 | 02-04-2013 - 03:23 | |
CVE-2014-7812 | 3.5 |
Cross-site scripting (XSS) vulnerability in Spacewalk and Red Hat Network (RHN) Satellite before 5.7.0 allows remote authenticated users to inject arbitrary web script or HTML via the System Groups field.
|
13-02-2023 - 00:42 | 15-01-2015 - 15:59 | |
CVE-2014-7811 | 3.5 |
Multiple cross-site scripting (XSS) vulnerabilities in Spacewalk and Red Hat Network (RHN) Satellite before 5.7.0 allow remote authenticated users to inject arbitrary web script or HTML via crafted XML data to the REST API.
|
13-02-2023 - 00:42 | 15-01-2015 - 15:59 | |
CVE-2014-3674 | 7.5 |
Red Hat OpenShift Enterprise before 2.2 does not properly restrict access to gears, which allows remote attackers to access the network resources of arbitrary gears via unspecified vectors.
|
13-02-2023 - 00:41 | 13-11-2014 - 21:32 | |
CVE-2014-3602 | 2.1 |
Red Hat OpenShift Enterprise before 2.2 allows local users to obtain IP address and port number information for remote systems by reading /proc/net/tcp.
|
13-02-2023 - 00:40 | 13-11-2014 - 21:32 | |
CVE-2014-0234 | 7.5 |
The default configuration of broker.conf in Red Hat OpenShift Enterprise 2.x before 2.1 has a password of "mooo" for a Mongo account, which allows remote attackers to hijack the broker by providing this password, related to the openshift.sh script in
|
13-02-2023 - 00:37 | 12-02-2020 - 01:15 | |
CVE-2014-0175 | 7.5 |
mcollective has a default password set at install
|
13-02-2023 - 00:34 | 13-12-2019 - 13:15 | |
CVE-2014-0084 | 2.1 |
Ruby gem openshift-origin-node before 2014-02-14 does not contain a cronjob timeout which could result in a denial of service in cron.daily and cron.weekly.
|
13-02-2023 - 00:31 | 21-11-2019 - 15:15 | |
CVE-2012-5562 | 3.3 |
rhn-proxy: may transmit credentials over clear-text when accessing RHN Satellite
|
13-12-2019 - 21:35 | 02-12-2019 - 19:15 |