Important: Red Hat Security Advisory: Red Hat OpenShift GitOps v1.17.5 security update

Important: Red Hat OpenShift GitOps v1.17.5 security update An update is now available for Red Hat OpenShift GitOps. Bug Fixes and Enhancements: GITOPS-8438 CVE-2025-12816 openshift-gitops-1/console-plugin-rhel8: node-forge: Interpretation conflict vulnerability allows bypassing cryptographic...

Malicious Package

Overview oci-console-plugin-registry is a malicious package. This package contains malicious code, and its content was removed from the official package manager. While this package might be attempting to impersonate a valid organization, there is no connection between that organization and this...

MAL-2025-47333 Malicious code in oci-console-plugin-registry (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 19ce011b024c9c3dcf78578cbf559de94a96364525ace53ce28457dba2053bf9 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

Malicious code in oci-console-plugin-registry (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 19ce011b024c9c3dcf78578cbf559de94a96364525ace53ce28457dba2053bf9 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

MAL-2025-28317 Malicious code in openai-realtime-console-plugin (npm)

The package openai-realtime-console-plugin was found to contain malicious code...

Malicious code in openai-realtime-console-plugin (npm)

The package openai-realtime-console-plugin was found to contain malicious code...

CVE-2023-28168 WordPress WordPress Console plugin <= 0.3.9 - Broken Access Control vulnerability

Missing Authorization vulnerability in Jerod Santo WordPress Console allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects WordPress Console: from n/a through 0.3.9...

Important: Red Hat Security Advisory: Errata Advisory for Red Hat OpenShift GitOps v1.12.2 security update

An update is now available for Red Hat OpenShift GitOps v1.12.2 for Argo CD UI and Console Plugin. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available f...

VulnCheck KEV: CVE-2018-17246

Kibana versions before 6.4.3 and 5.6.13 contain an arbitrary file inclusion flaw in the Console plugin. An attacker with access to the Kibana Console API could send a request that will attempt to execute javascript code. This could possibly lead to an attacker executing arbitrary commands with...

biz.netcentric.aem.ops.healthchecks.migration:hc-migration-felix-healthcheck-package (=1.0.0) potentially affected by CVE-2023-38435 via org.apache.felix:org.apache.felix.healthcheck.webconsoleplugin (=2.0.0)

org.apache.felix:org.apache.felix.healthcheck.webconsoleplugin MAVEN version =2.0.0 is affected by a known vulnerability. The following packages have a transitive dependency on org.apache.felix:org.apache.felix.healthcheck.webconsoleplugin and may be impacted: -...

WordPress WordPress Console Plugin <= 0.3.9 is vulnerable to Broken Access Control

Software WordPress Console Type Plugin Vulnerable versions = 0.3.9 Fixed in N/A OWASP Top 10 A5: Broken Access Control Classification Broken Access Control CVE CVE-2023-28168 Patch priority Low CVSS severity Low 3.7 Developer Claim ownership PSID baf6147603ae Credits Prasanna V Balaji Required...

SUSE CVE-2018-17246

Kibana versions before 6.4.3 and 5.6.13 contain an arbitrary file inclusion flaw in the Console plugin. An attacker with access to the Kibana Console API could send a request that will attempt to execute javascript code. This could possibly lead to an attacker executing arbitrary commands with...

CVE-2018-17246

Kibana versions before 6.4.3 and 5.6.13 contain an arbitrary file inclusion flaw in the Console plugin. An attacker with access to the Kibana Console API could send a request that will attempt to execute javascript code. This could possibly lead to an attacker executing arbitrary commands with...

Design/Logic Flaw

Kibana versions before 6.4.3 and 5.6.13 contain an arbitrary file inclusion flaw in the Console plugin. An attacker with access to the Kibana Console API could send a request that will attempt to execute javascript code. This could possibly lead to an attacker executing arbitrary commands with...

CVE-2018-17246

CVE-2018-17246 affects Kibana prior to 6.4.3 and 5.6.13, due to an arbitrary file inclusion flaw in the Console plugin. An attacker with access to the Kibana Console API could send a crafted request that attempts to execute JavaScript, potentially leading to arbitrary commands executed with the K...

kibana: Arbitrary file inclusion vulnerability in the Console plugin

Kibana, before 6.4.3 and 5.6.13, contain an arbitrary file inclusion flaw in the Console plugin. An attacker with access to the Kibana Console API could send a request that will attempt to execute JavaScript code. This could possibly lead to an attacker executing arbitrary commands with permissio...

CVE-2018-17246

Kibana, before 6.4.3 and 5.6.13, contain an arbitrary file inclusion flaw in the Console plugin. An attacker with access to the Kibana Console API could send a request that will attempt to execute JavaScript code. This could possibly lead to an attacker executing arbitrary commands with permissio...

Kibana ESA-2018-18

Nethanel Coppenhagen of CyberArk Labs discovered Kibana versions before 6.4.3 and 5.6.13 contain an arbitrary file inclusion flaw in the Console plugin. An attacker with access to the Kibana Console API could send a request that will attempt to execute javascript code. This could possibly lead to...