Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
publisher vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2011-3411
Microsoft Publisher 2003 SP3 allows remote malicious users to execute arbitrary code via a crafted Publisher file that leverages incorrect handling of values in memory, aka "Publisher Invalid Pointer Vulnerability."
Microsoft Publisher 2003
NA
CVE-2007-1754
PUBCONV.DLL in Microsoft Office Publisher 2007 does not properly clear memory when transferring data from disk to memory, which allows user-assisted remote malicious users to execute arbitrary code via a malformed .pub page via a certain negative value, which bypasses a sanitizat...
Microsoft Publisher 2007
4.3
CVSSv3
CVE-2018-1999039
A server-side request forgery vulnerability exists in Jenkins Confluence Publisher Plugin 2.0.1 and previous versions in ConfluenceSite.java that allows malicious users to have Jenkins submit login requests to an attacker-specified Confluence server URL with attacker specified cr...
Jenkins Confluence Publisher
4.3
CVSSv3
CVE-2022-41230
Jenkins Build-Publisher Plugin 1.22 and previous versions does not perform a permission check in an HTTP endpoint, allowing attackers with Overall/Read permission to obtain names and URLs of Jenkins servers that the plugin is configured to publish builds to, as well as builds pen...
Jenkins Build-publisher
5.7
CVSSv3
CVE-2022-41231
Jenkins Build-Publisher Plugin 1.22 and previous versions allows attackers with Item/Configure permission to create or replace any config.xml file on the Jenkins controller file system by providing a crafted file name to an API endpoint.
Jenkins Build-publisher
7.8
CVSSv3
CVE-2016-10395
In FlexNet Publisher versions before Luton SP1 (11.14.1.1) running FlexNet Publisher Licensing Service on Windows platform, a boundary error related to a named pipe within the FlexNet Publisher Licensing Service can be exploited to cause an out-of-bounds memory read access and su...
Flexerasoftware Flexnet Publisher
6.5
CVSSv3
CVE-2018-1000175
A path traversal vulnerability exists in Jenkins HTML Publisher Plugin 1.15 and older in HtmlPublisherTarget.java that allows attackers able to configure the HTML Publisher build step to override arbitrary files on the Jenkins master.
Jenkins Html Publisher
5.4
CVSSv3
CVE-2018-1000177
A cross-site scripting vulnerability exists in Jenkins S3 Plugin 0.10.12 and older in src/main/resources/hudson/plugins/s3/S3ArtifactsProjectAction/jobMain.jelly that allows attackers able to control file names of uploaded files to define file names containing JavaScript that wou...
Jenkins S3 Publisher
NA
CVE-2006-6180
Cross-site scripting (XSS) vulnerability in articles.asp in Expinion.net iNews Publisher (iNP) 2.5 and previous versions allows remote malicious users to inject arbitrary web script or HTML via the hl parameter. NOTE: The provenance of this information is unknown; the details are...
Expinion.net Inews Publisher
4.3
CVSSv3
CVE-2021-21650
Jenkins S3 publisher Plugin 0.11.6 and previous versions does not perform Run/Artifacts permission checks in various HTTP endpoints and API models, allowing attackers with Item/Read permission to obtain information about artifacts uploaded to S3, if the optional Run/Artifacts per...
Jenkins S3 Publisher
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
authentication bypass
CVE-2024-30043
camera
CVE-2023-40404
CVE-2024-2793
client side
CVE-2024-4469
CVE-2024-3565
CVE-2024-29825
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
4
5
6
7
8
9
10
NEXT »