• Skip to primary navigation
  • Skip to main content
CVE Vulnerability

CVE Vulnerability

  • CVE’s
  • Products
  • Vendors

CWE-276

CVE-2019-16552

February 26, 2023 by

A missing permission check in Jenkins Gerrit Trigger Plugin 2.30.1 and earlier allows attackers with Overall/Read permission to connect to an attacker-specified HTTP URL or SSH server using attacker-specified credentials, or determine the existence of a file with a given path on the Jenkins master.

CVE-2019-16554

February 26, 2023 by

A missing permission check in Jenkins Build Failure Analyzer Plugin 1.24.1 and earlier allows attackers with Overall/Read permission to have Jenkins evaluate a computationally expensive regular expression.

CVE-2019-16559

February 26, 2023 by

A missing permission check in Jenkins WebSphere Deployer Plugin 1.6.1 and earlier allows attackers with Overall/Read permission to perform connection tests and determine whether files with an attacker-specified path exist on the Jenkins master file system.

CVE-2019-16355

February 26, 2023 by

The File Session Manager in Beego 1.10.0 allows local users to read session files because of weak permissions for individual files.

CVE-2019-16183

February 26, 2023 by

In Limesurvey before 3.17.14, admin users can run an integrity check without proper permissions.

CVE-2019-16185

February 26, 2023 by

In Limesurvey before 3.17.14, admin users can view, update, or delete reserved menu entries without proper permissions.

  • « Go to Previous Page
  • Go to page 1
  • Interim pages omitted …
  • Go to page 46
  • Go to page 47
  • Go to page 48
  • Go to page 49
  • Go to page 50
  • Interim pages omitted …
  • Go to page 110
  • Go to Next Page »

Copyright CVE Vulnerabilities 2023
Data Sources:

  • NIST
  • MITRE
  • CVE Search
  • Open CVE