Vulnerabilities > Agentejo > Cockpit > 0.13.0
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2023-03-10 | CVE-2023-1313 | Unrestricted Upload of File with Dangerous Type vulnerability in Agentejo Cockpit Unrestricted Upload of File with Dangerous Type in GitHub repository cockpit-hq/cockpit prior to 2.4.1. | 8.8 |
2023-03-03 | CVE-2023-1160 | Use of Platform-Dependent Third Party Components vulnerability in Agentejo Cockpit Use of Platform-Dependent Third Party Components in GitHub repository cockpit-hq/cockpit prior to 2.4.0. | 5.5 |
2023-02-11 | CVE-2023-0780 | Improper Restriction of Rendered UI Layers or Frames vulnerability in Agentejo Cockpit Improper Restriction of Rendered UI Layers or Frames in GitHub repository cockpit-hq/cockpit prior to 2.3.9-dev. | 5.4 |
2023-02-09 | CVE-2023-0759 | Privilege Chaining vulnerability in Agentejo Cockpit Privilege Chaining in GitHub repository cockpit-hq/cockpit prior to 2.3.8. | 8.8 |
2022-08-15 | CVE-2022-2818 | Improper Cross-boundary Removal of Sensitive Data vulnerability in Agentejo Cockpit Improper Removal of Sensitive Information Before Storage or Transfer in GitHub repository cockpit-hq/cockpit prior to 2.2.2. | 8.8 |
2018-04-10 | CVE-2017-14611 | Server-Side Request Forgery (SSRF) vulnerability in Agentejo Cockpit 0.13.0 SSRF (Server Side Request Forgery) in Cockpit 0.13.0 allows remote attackers to read arbitrary files or send TCP traffic to intranet hosts via the url parameter, related to use of the discontinued aheinze/fetch_url_contents component. | 6.4 |