Vulnerabilities > Buildbot

DATE	CVE	VULNERABILITY TITLE	RISK
2019-05-23	CVE-2019-12300	Improper Authentication vulnerability in Buildbot Buildbot before 1.8.2 and 2.x before 2.3.1 accepts a user-submitted authorization token from OAuth and uses it to authenticate a user. network low complexity buildbot CWE-287 critical	9.8
2019-02-03	CVE-2019-7313	CRLF Injection vulnerability in Buildbot www/resource.py in Buildbot before 1.8.1 allows CRLF injection in the Location header of /auth/login and /auth/logout via the redirect parameter. network buildbot CWE-93	5.8
2009-08-26	CVE-2009-2967	Cross-Site Scripting vulnerability in Buildbot Multiple cross-site scripting (XSS) vulnerabilities in Buildbot 0.7.6 through 0.7.11p2 allow remote attackers to inject arbitrary web script or HTML via unspecified vectors, different vulnerabilities than CVE-2009-2959. network buildbot CWE-79	4.3
2009-08-25	CVE-2009-2959	Cross-Site Scripting vulnerability in Buildbot Cross-site scripting (XSS) vulnerability in the waterfall web status view (status/web/waterfall.py) in Buildbot 0.7.6 through 0.7.11p1 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors. network buildbot CWE-79	4.3

Vulnerabilities > Buildbot {"@context":"https://schema.org","@type":"BreadcrumbList","itemListElement":[{"@type":"ListItem","position":1,"name":"Vulnerabilities","item":"https://cyber.vumetric.com/vulns/"},{"@type":"ListItem","position":2,"name":"Buildbot"}]}