Max CVSS 7.5 Min CVSS 2.1 Total Count2
IDCVSSSummaryLast (major) updatePublished
CVE-2013-2034 6.8
Multiple cross-site request forgery (CSRF) vulnerabilities in Jenkins before 1.514, LTS before 1.509.1, and Enterprise 1.466.x before 1.466.14.1 and 1.480.x before 1.480.4.1 allow remote attackers to hijack the authentication of administrators for re
13-02-2023 - 04:42 14-05-2014 - 19:55
CVE-2013-2033 2.1
Cross-site scripting (XSS) vulnerability in Jenkins before 1.514, LTS before 1.509.1, and Enterprise 1.466.x before 1.466.14.1 and 1.480.x before 1.480.4.1 allows remote authenticated users with write permission to inject arbitrary web script or HTML
13-02-2023 - 04:42 10-04-2014 - 20:29
CVE-2013-1808 4.3
Cross-site scripting (XSS) vulnerability in ZeroClipboard.swf and ZeroClipboard10.swf in ZeroClipboard before 1.0.8, as used in em-shorty, RepRapCalculator, Fulcrum, Django, aCMS, and other products, allows remote attackers to inject arbitrary web sc
13-02-2023 - 04:41 02-04-2013 - 03:23
CVE-2014-3674 7.5
Red Hat OpenShift Enterprise before 2.2 does not properly restrict access to gears, which allows remote attackers to access the network resources of arbitrary gears via unspecified vectors.
13-02-2023 - 00:41 13-11-2014 - 21:32
CVE-2014-3602 2.1
Red Hat OpenShift Enterprise before 2.2 allows local users to obtain IP address and port number information for remote systems by reading /proc/net/tcp.
13-02-2023 - 00:40 13-11-2014 - 21:32
CVE-2014-0234 7.5
The default configuration of broker.conf in Red Hat OpenShift Enterprise 2.x before 2.1 has a password of "mooo" for a Mongo account, which allows remote attackers to hijack the broker by providing this password, related to the openshift.sh script in
13-02-2023 - 00:37 12-02-2020 - 01:15
CVE-2014-0175 7.5
mcollective has a default password set at install
13-02-2023 - 00:34 13-12-2019 - 13:15
CVE-2014-0084 2.1
Ruby gem openshift-origin-node before 2014-02-14 does not contain a cronjob timeout which could result in a denial of service in cron.daily and cron.weekly.
13-02-2023 - 00:31 21-11-2019 - 15:15
CVE-2013-0256 4.3
darkfish.js in RDoc 2.3.0 through 3.12 and 4.x before 4.0.0.preview2.1, as used in Ruby, does not properly generate documents, which allows remote attackers to conduct cross-site scripting (XSS) attacks via a crafted URL.
09-09-2021 - 12:28 01-03-2013 - 05:40
Back to Top Mark selected
Back to Top