Vulnerabilities > Agentejo > Cockpit > High
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2023-08-06 | CVE-2023-4195 | Unspecified vulnerability in Agentejo Cockpit PHP Remote File Inclusion in GitHub repository cockpit-hq/cockpit prior to 2.6.3. | 8.8 |
| 2023-07-20 | CVE-2023-37649 | Unspecified vulnerability in Agentejo Cockpit Incorrect access control in the component /models/Content of Cockpit CMS v2.5.2 allows unauthorized attackers to access sensitive data. | 7.5 |
| 2023-07-20 | CVE-2023-37650 | Cross-Site Request Forgery (CSRF) vulnerability in Agentejo Cockpit A Cross-Site Request Forgery (CSRF) in the Admin portal of Cockpit CMS v2.5.2 allows attackers to execute arbitrary Administrator commands. | 8.8 |
| 2023-03-10 | CVE-2023-1313 | Unspecified vulnerability in Agentejo Cockpit Unrestricted Upload of File with Dangerous Type in GitHub repository cockpit-hq/cockpit prior to 2.4.1. | 8.8 |
| 2023-02-09 | CVE-2023-0759 | Unspecified vulnerability in Agentejo Cockpit Privilege Chaining in GitHub repository cockpit-hq/cockpit prior to 2.3.8. | 8.8 |
| 2022-08-15 | CVE-2022-2818 | Unspecified vulnerability in Agentejo Cockpit Improper Removal of Sensitive Information Before Storage or Transfer in GitHub repository cockpit-hq/cockpit prior to 2.2.2. | 8.8 |
| 2018-10-15 | CVE-2018-15539 | Cross-Site Request Forgery (CSRF) vulnerability in Agentejo Cockpit Agentejo Cockpit lacks an anti-CSRF protection mechanism. | 8.8 |