Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
portainer portainer vulnerabilities and exploits
(subscribe to this query)
4.3
CVSSv2
CVE-2021-42650
Cross Site Scripting (XSS vulnerability exists in Portainer prior to 2.9.1 via the node input box in Custom Templates.
Portainer Portainer
4
CVSSv2
CVE-2019-16874
Portainer prior to 1.22.1 has Incorrect Access Control (issue 2 of 4).
Portainer Portainer
3.5
CVSSv2
CVE-2019-16878
Portainer prior to 1.22.1 has XSS (issue 2 of 2).
Portainer Portainer
3.5
CVSSv2
CVE-2019-16873
Portainer prior to 1.22.1 has XSS (issue 1 of 2).
Portainer Portainer
3.5
CVSSv2
CVE-2018-16316
A stored Cross-site scripting (XSS) vulnerability in Portainer up to and including 1.19.1 allows remote authenticated users to inject arbitrary JavaScript and/or HTML via the Team Name field.
Portainer Portainer
NA
CVE-2024-33661
Portainer prior to 2.20.0 allows redirects when the target is not index.yaml.
NA
CVE-2024-29296
A user enumeration vulnerability was found in Portainer CE 2.19.4. This issue occurs during user authentication process, where a difference in response time could allow a remote unauthenticated user to determine if a username is valid or not.
1 Github repository
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-33572
CVE-2024-24919
CVE-2024-0230
CVE-2024-32714
HTML injection
local file inclusion
CVE-2024-31098
CVE-2024-31244
privilege
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2