Lucene search
K

5 matches found

CVE
CVE
added yesterday47 views

CVE-2026-44025

CVE-2026-44025 affects Fluentd’s Monitor Agent in_monitor_agent. Prior to version 1.19.3, the REST API responses (e.g., /api/plugins.json) could expose internal metrics and plugin information that may contain sensitive data such as database passwords, API keys, or cloud credentials. The issue is ...

7.5CVSS7.2AI score
Exploits0References4
NVD
NVD
added 2026/05/28 10:16 p.m.14 views

CVE-2026-44848

Portainer Community Edition is a lightweight service delivery platform for containerized applications that can be used to manage Docker, Swarm, Kubernetes and ACI environments. From 2.33.0 to before 2.33.8, 2.39.2, and 2.41.0, The Docker plugin management endpoints /plugins/ were not registered...

9.4CVSS0.00328EPSS
Exploits1References1
GithubExploit
GithubExploit
added 2025/11/27 9:56 p.m.150 views

Exploit for Path Traversal in Grafana

CVE-2021-43798 CVE-2021-43798 is a high-severity path traversa...

7.5CVSS7AI score0.88849EPSS
Exploits44
Cvelist
Cvelist
added 2025/09/18 6:11 a.m.14 views

CVE-2023-49565 Remote Code Execution

The cbismanager Podman container is vulnerable to remote command execution via the /api/plugins endpoint. Improper sanitization of the HTTP Headers X-FILENAME, X-PAGE, and X-FIELD allows for command injection. These headers are directly utilized within the subprocess.Popen Python function without...

0.00756EPSS
Exploits0References1
CVE
CVE
added 2025/09/18 6:11 a.m.18 views

CVE-2023-49565

The CVE-2023-49565 entry concerns the cbis_manager Podman container. The vulnerability allows remote command execution through the /api/plugins endpoint due to improper sanitization of HTTP headers X-FILENAME, X-PAGE, and X-FIELD, which are directly used by a subprocess.Popen call without suffici...

8.4CVSS8.5AI score0.00756EPSS
Exploits0References1
Rows per page
Query Builder