Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
agentejo cockpit vulnerabilities and exploits
(subscribe to this query)
5.4
CVSSv3
CVE-2023-4433
Cross-site Scripting (XSS) - Stored in GitHub repository cockpit-hq/cockpit before 2.6.4.
Agentejo Cockpit
6.1
CVSSv3
CVE-2023-4451
Cross-site Scripting (XSS) - Reflected in GitHub repository cockpit-hq/cockpit before 2.6.4.
Agentejo Cockpit
9.8
CVSSv3
CVE-2022-2713
Insufficient Session Expiration in GitHub repository cockpit-hq/cockpit before 2.2.0.
Agentejo Cockpit
6.1
CVSSv3
CVE-2018-15538
Agentejo Cockpit has multiple Cross-Site Scripting vulnerabilities.
Agentejo Cockpit -
8.8
CVSSv3
CVE-2018-15539
Agentejo Cockpit lacks an anti-CSRF protection mechanism. Thus, an attacker is able to change API tokens, passwords, etc.
Agentejo Cockpit -
9.8
CVSSv3
CVE-2018-15540
Agentejo Cockpit performs actions on files without appropriate validation and therefore allows an malicious user to traverse the file system to unintended locations and/or access arbitrary files, aka /media/api Directory Traversal.
Agentejo Cockpit -
9.8
CVSSv3
CVE-2020-35847
Agentejo Cockpit prior to 0.11.2 allows NoSQL injection via the Controller/Auth.php resetpassword function.
Agentejo Cockpit
2 Github repositories
9.8
CVSSv3
CVE-2020-35848
Agentejo Cockpit prior to 0.11.2 allows NoSQL injection via the Controller/Auth.php newpassword function.
Agentejo Cockpit
1 Github repository
8.8
CVSSv3
CVE-2023-0759
Privilege Chaining in GitHub repository cockpit-hq/cockpit before 2.3.8.
Agentejo Cockpit
5.4
CVSSv3
CVE-2023-0780
Improper Restriction of Rendered UI Layers or Frames in GitHub repository cockpit-hq/cockpit before 2.3.9-dev.
Agentejo Cockpit
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
camera
bypass
CVE-2024-3592
CVE-2024-37383
CVE-2024-24919
CVE-2024-27822
CVE-2024-36788
CVE-2024-36789
man-in-the-middle
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
NEXT »