Vulnerabilities > Agentejo > Medium

DATE CVE VULNERABILITY TITLE RISK
2023-02-11 CVE-2023-0780 Improper Restriction of Rendered UI Layers or Frames vulnerability in Agentejo Cockpit
Improper Restriction of Rendered UI Layers or Frames in GitHub repository cockpit-hq/cockpit prior to 2.3.9-dev.
network
low complexity
agentejo CWE-1021
5.4
2020-06-17 CVE-2020-14408 Cross-site Scripting vulnerability in Agentejo Cockpit 0.10.2
An issue was discovered in Agentejo Cockpit 0.10.2.
network
agentejo CWE-79
4.3
2018-10-15 CVE-2018-15539 Cross-Site Request Forgery (CSRF) vulnerability in Agentejo Cockpit
Agentejo Cockpit lacks an anti-CSRF protection mechanism.
network
agentejo CWE-352
6.8
2018-10-15 CVE-2018-15538 Cross-site Scripting vulnerability in Agentejo Cockpit
Agentejo Cockpit has multiple Cross-Site Scripting vulnerabilities.
network
agentejo CWE-79
4.3
2018-04-10 CVE-2017-14611 Server-Side Request Forgery (SSRF) vulnerability in Agentejo Cockpit 0.13.0
SSRF (Server Side Request Forgery) in Cockpit 0.13.0 allows remote attackers to read arbitrary files or send TCP traffic to intranet hosts via the url parameter, related to use of the discontinued aheinze/fetch_url_contents component.
network
low complexity
agentejo CWE-918
6.4