CVE-2025-47887 – Jenkins Cadence vManager Plugin Unauthenticated Remote Code Execution

CVE ID : CVE-2025-47887

Published : May 14, 2025, 9:15 p.m. | 1 hour, 39 minutes ago

Description : Missing permission checks in Jenkins Cadence vManager Plugin 4.0.1-286.v9e25a_740b_a_48 and earlier allows attackers with Overall/Read permission to connect to an attacker-specified URL using attacker-specified username and password.

Severity: 0.0 | NA

Visit the link for more details, such as CVSS details, affected products, timeline, and more…

نوشته های مشابه

CVE-2025-3053 – “UiPress Lite WordPress Remote Code Execution Vulnerability”

CVE-2025-48024 – BlueWave Checkmate Sensitive Data Disclosure

CVE-2024-13914 – “WordPress File Manager Advanced Shortcode Local File Inclusion Vulnerability”

CVE-2025-3742 – WordPress Responsive Lightbox & Gallery Stored Cross-Site Scripting Vulnerability