Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
agentejo cockpit vulnerabilities and exploits
(subscribe to this query)
668
VMScore
CVE-2020-35131
Cockpit prior to 0.6.1 allows an malicious user to inject custom PHP code and achieve Remote Command Execution via registerCriteriaFunction in lib/MongoLite/Database.php, as demonstrated by values in JSON data to the /auth/check or /auth/requestreset URI.
Agentejo Cockpit
668
VMScore
CVE-2020-35847
Agentejo Cockpit prior to 0.11.2 allows NoSQL injection via the Controller/Auth.php resetpassword function.
Agentejo Cockpit
2 Github repositories
668
VMScore
CVE-2020-35848
Agentejo Cockpit prior to 0.11.2 allows NoSQL injection via the Controller/Auth.php newpassword function.
Agentejo Cockpit
1 Github repository
NA
CVE-2023-1313
Unrestricted Upload of File with Dangerous Type in GitHub repository cockpit-hq/cockpit before 2.4.1.
Agentejo Cockpit
NA
CVE-2023-4395
Cross-site Scripting (XSS) - Stored in GitHub repository cockpit-hq/cockpit before 2.6.4.
Agentejo Cockpit
NA
CVE-2023-4195
PHP Remote File Inclusion in GitHub repository cockpit-hq/cockpit before 2.6.3.
Agentejo Cockpit
NA
CVE-2023-4196
Cross-site Scripting (XSS) - Stored in GitHub repository cockpit-hq/cockpit before 2.6.3.
Agentejo Cockpit
NA
CVE-2023-4451
Cross-site Scripting (XSS) - Reflected in GitHub repository cockpit-hq/cockpit before 2.6.4.
Agentejo Cockpit
NA
CVE-2023-0780
Improper Restriction of Rendered UI Layers or Frames in GitHub repository cockpit-hq/cockpit before 2.3.9-dev.
Agentejo Cockpit
NA
CVE-2023-4422
Cross-site Scripting (XSS) - Stored in GitHub repository cockpit-hq/cockpit before 2.6.3.
Agentejo Cockpit
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2020-4463
CVE-2024-3400
deserialization
CVE-2024-21788
CVE-2023-42433
CVE-2024-21841
CVE-2024-22095
local file inclusion
memory leak
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
3
NEXT »