CVE-2022-39834 A stored XSS vulnerability was found in PrimeKey EJBCA through 7.9.0.2.
A stored XSS vulnerability was discovered in adminweb/ra/viewendentity.jsp in PrimKey EJBCA through 7.9.0.2. A low-privilege user can store JavaScript
CVE-2022-45047 - How Insecure Java Deserialization in Apache MINA SSHD Can Open the Gate for Attackers
If you’re running an SSH server using Apache MINA SSHD—especially anything up to version 2.9.1—you need to know about a
CVE-2022-45395 - Exploiting Jenkins CCCC Plugin with XXE Vulnerability
In late 2022, security researchers uncovered a concerning vulnerability — CVE-2022-45395 — in the Jenkins CCCC Plugin, version .6 and earlier. This flaw lets attackers exploit XML
CVE-2022-45386 - Exploiting an XXE in Jenkins Violations Plugin – How Misconfigured XML Led to a Critical Security Flaw
Jenkins is a widely-used automation server in software development, handling millions of jobs worldwide. Jenkins Violations Plugin is an add-on that reports static analysis violations,
CVE-2022-38666 - Critical SSL/TLS Validation Flaw in Jenkins NS-ND Integration Performance Publisher Plugin
In September 2022, a dangerous vulnerability was disclosed in the Jenkins NS-ND Integration Performance Publisher Plugin, tracked as CVE-2022-38666. Jenkins is one of the most
Episode
00:00:00
00:00:00