Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
agentejo cockpit vulnerabilities and exploits
(subscribe to this query)
4.8
CVSSv3
CVE-2023-4422
Cross-site Scripting (XSS) - Stored in GitHub repository cockpit-hq/cockpit before 2.6.3.
Agentejo Cockpit
6.1
CVSSv3
CVE-2023-4432
Cross-site Scripting (XSS) - Reflected in GitHub repository cockpit-hq/cockpit before 2.6.4.
Agentejo Cockpit
5.4
CVSSv3
CVE-2023-4433
Cross-site Scripting (XSS) - Stored in GitHub repository cockpit-hq/cockpit before 2.6.4.
Agentejo Cockpit
9.8
CVSSv3
CVE-2020-35131
Cockpit prior to 0.6.1 allows an malicious user to inject custom PHP code and achieve Remote Command Execution via registerCriteriaFunction in lib/MongoLite/Database.php, as demonstrated by values in JSON data to the /auth/check or /auth/requestreset URI.
Agentejo Cockpit
5.5
CVSSv3
CVE-2023-1160
Use of Platform-Dependent Third Party Components in GitHub repository cockpit-hq/cockpit before 2.4.0.
Agentejo Cockpit
9.8
CVSSv3
CVE-2020-35846
Agentejo Cockpit prior to 0.11.2 allows NoSQL injection via the Controller/Auth.php check function.
Agentejo Cockpit
4 Github repositories
6.1
CVSSv3
CVE-2023-4321
Cross-site Scripting (XSS) - Stored in GitHub repository cockpit-hq/cockpit before 2.4.3.
Agentejo Cockpit
8.8
CVSSv3
CVE-2023-0759
Privilege Chaining in GitHub repository cockpit-hq/cockpit before 2.3.8.
Agentejo Cockpit
5.4
CVSSv3
CVE-2023-0780
Improper Restriction of Rendered UI Layers or Frames in GitHub repository cockpit-hq/cockpit before 2.3.9-dev.
Agentejo Cockpit
8.8
CVSSv3
CVE-2023-1313
Unrestricted Upload of File with Dangerous Type in GitHub repository cockpit-hq/cockpit before 2.4.1.
Agentejo Cockpit
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
camera
bypass
CVE-2024-3592
CVE-2024-37383
CVE-2024-24919
CVE-2024-27822
CVE-2024-36788
CVE-2024-36789
man-in-the-middle
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
NEXT »