Note:
This project will be discontinued after December 13, 2021. [more]
Product:
Cockpit
(Agentejo)| Repositories |
Unknown: This might be proprietary software. |
| #Vulnerabilities | 27 |
| Date | Id | Summary | Products | Score | Patch | Annotated |
|---|---|---|---|---|---|---|
| 2023-09-08 | CVE-2023-41564 | An arbitrary file upload vulnerability in the Upload Asset function of Cockpit CMS v2.6.3 allows attackers to execute arbitrary code via uploading a crafted .shtml file. | Cockpit | 6.1 | ||
| 2023-08-20 | CVE-2023-4451 | Cross-site Scripting (XSS) - Reflected in GitHub repository cockpit-hq/cockpit prior to 2.6.4. | Cockpit | 6.1 | ||
| 2023-08-19 | CVE-2023-4433 | Cross-site Scripting (XSS) - Stored in GitHub repository cockpit-hq/cockpit prior to 2.6.4. | Cockpit | 5.4 | ||
| 2023-08-19 | CVE-2023-4432 | Cross-site Scripting (XSS) - Reflected in GitHub repository cockpit-hq/cockpit prior to 2.6.4. | Cockpit | 6.1 | ||
| 2023-08-14 | CVE-2023-4321 | Cross-site Scripting (XSS) - Stored in GitHub repository cockpit-hq/cockpit prior to 2.4.3. | Cockpit | 6.1 | ||
| 2023-08-17 | CVE-2023-4395 | Cross-site Scripting (XSS) - Stored in GitHub repository cockpit-hq/cockpit prior to 2.6.4. | Cockpit | 5.4 | ||
| 2023-08-18 | CVE-2023-4422 | Cross-site Scripting (XSS) - Stored in GitHub repository cockpit-hq/cockpit prior to 2.6.3. | Cockpit | 4.8 | ||
| 2023-08-06 | CVE-2023-4195 | PHP Remote File Inclusion in GitHub repository cockpit-hq/cockpit prior to 2.6.3. | Cockpit | 8.8 | ||
| 2023-08-06 | CVE-2023-4196 | Cross-site Scripting (XSS) - Stored in GitHub repository cockpit-hq/cockpit prior to 2.6.3. | Cockpit | 5.4 | ||
| 2022-08-15 | CVE-2022-2818 | Improper Removal of Sensitive Information Before Storage or Transfer in GitHub repository cockpit-hq/cockpit prior to 2.2.2. | Cockpit | 8.8 |