Vulnerabilities > Improper Encoding or Escaping of Output
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2019-07-31 | CVE-2019-10362 | Improper Encoding or Escaping of Output vulnerability in Jenkins Configuration AS Code Jenkins Configuration as Code Plugin 1.24 and earlier did not escape values resulting in variable interpolation during configuration import when exporting, allowing attackers with permission to change Jenkins system configuration to obtain the values of environment variables. | 5.4 |
| 2019-07-23 | CVE-2019-11717 | Improper Encoding or Escaping of Output vulnerability in multiple products A vulnerability exists where the caret ("^") character is improperly escaped constructing some URIs due to it being used as a separator, allowing for possible spoofing of origin attributes. | 5.3 |
| 2019-07-11 | CVE-2019-11268 | Improper Encoding or Escaping of Output vulnerability in Pivotal Software Cloud Foundry Uaa-Release Cloud Foundry UAA version prior to 73.3.0, contain endpoints that contains improper escaping. | 4.3 |
| 2019-07-05 | CVE-2018-16386 | Improper Encoding or Escaping of Output vulnerability in Swift Alliance web Platform 7.1.23 An issue was discovered in SWIFT Alliance Web Platform 7.1.23. | 7.5 |
| 2019-06-18 | CVE-2018-18838 | Improper Encoding or Escaping of Output vulnerability in My-Netdata Netdata 1.10.0 An issue was discovered in Netdata 1.10.0. | 7.5 |
| 2019-05-16 | CVE-2019-0971 | Improper Encoding or Escaping of Output vulnerability in Microsoft Azure Devops Server and Team Foundation Server An information disclosure vulnerability exists when Azure DevOps Server and Microsoft Team Foundation Server do not properly sanitize a specially crafted authentication request to an affected server, aka 'Azure DevOps Server and Team Foundation Server Information Disclosure Vulnerability'. | 6.5 |
| 2019-05-16 | CVE-2019-0956 | Improper Encoding or Escaping of Output vulnerability in Microsoft products An information disclosure vulnerability exists when Microsoft SharePoint Server does not properly sanitize a specially crafted web request to an affected SharePoint server, aka 'Microsoft SharePoint Server Information Disclosure Vulnerability'. | 6.5 |
| 2019-05-06 | CVE-2019-10249 | Improper Encoding or Escaping of Output vulnerability in Eclipse Xtend and Xtext All Xtext & Xtend versions prior to 2.18.0 were built using HTTP instead of HTTPS file transfer and thus the built artifacts may have been compromised. | 8.1 |
| 2019-04-09 | CVE-2019-0857 | Improper Encoding or Escaping of Output vulnerability in Microsoft Azure Devops Server 2019 A spoofing vulnerability that could allow a security feature bypass exists in when Azure DevOps Server does not properly sanitize user provided input, aka 'Azure DevOps Server Spoofing Vulnerability'. | 6.5 |
| 2019-01-31 | CVE-2019-6109 | Improper Encoding or Escaping of Output vulnerability in multiple products An issue was discovered in OpenSSH 7.9. | 6.8 |