Lucene search
+L

136 matches found

OSV
OSV
added 2019/12/31 6:15 p.m.12 views

CVE-2019-10227

openITCOCKPIT before 3.7.1 has reflected XSS in the 404-not-found component...

6.1CVSS6AI score
Exploits0References2
Prion
Prion
added 2019/12/31 6:15 p.m.11 views

Cross site scripting

openITCOCKPIT before 3.7.1 has reflected XSS in the 404-not-found component...

4.3CVSS6AI score0.01229EPSS
Exploits2References2Affected Software1
Cvelist
Cvelist
added 2019/12/31 5:44 p.m.29 views

CVE-2019-10227

openITCOCKPIT before 3.7.1 has reflected XSS in the 404-not-found component...

6.1AI score0.01229EPSS
Exploits2References2
CVE
CVE
added 2019/12/31 5:44 p.m.63 views

CVE-2019-10227

openITCOCKPIT before 3.7.1 is affected by a reflected XSS in the 404-not-found component. The CVE details confirm the issue (XSS) and that a fixed version is 3.7.1. The vulnerability is non-authenticated per CVSS2/3.1 vectors, with impact to integrity. Publicly documented remediation is upgrading...

6.1CVSS5.9AI score0.01229EPSS
Exploits2References2Affected Software1
CNVD
CNVD
added 2019/08/27 12:0 a.m.2 views

openITCOCKPIT Cross-Site Request Forgery Vulnerability

openITCOCKPIT is a set of open source system monitoring tools . A cross-site request forgery vulnerability exists in versions prior to openITCOCKPIT 3.7.1. An attacker can exploit this vulnerability to send unintended requests to the server via an affected client...

8.8CVSS6.8AI score0.006EPSS
Exploits0References1
CNVD
CNVD
added 2019/08/27 12:0 a.m.3 views

openITCOCKPIT Cross-Site Scripting Vulnerability

openITCOCKPIT is a set of open source system monitoring tools . openITCOCKPIT 3.7.1 before the version of the cross-site scripting vulnerability , the vulnerability stems from the lack of WEB applications on the client data to the correct validation , an attacker can exploit the vulnerability to...

6.1CVSS6.6AI score0.00822EPSS
Exploits0References1
CNVD
CNVD
added 2019/08/27 12:0 a.m.4 views

openITCOCKPIT Code Injection Vulnerability

openITCOCKPIT is a set of open source system monitoring tools . A code injection vulnerability exists in versions of openITCOCKPIT prior to 3.7.1. The vulnerability arises from external input data to construct code segments in the process , the network system or product is not properly filtered f...

9.8CVSS7.5AI score0.01656EPSS
Exploits0References1
0day.today
0day.today
added 2019/08/26 12:0 a.m.42 views

openITCOCKPIT 3.6.1-2 - Cross-Site Request Forgery Exploit

Exploit for php platform in category web applications Exploit Title: openITCOCKPIT 3.6.1-2 - CSRF 2 RCE Google Dork: N/A Exploit Author: Julian Rittweger Vendor Homepage: https://openitcockpit.io/ Software Link: https://github.com/it-novum/openITCOCKPIT/releases/tag/openITCOCKPIT-3.6.1-2 Fixed in...

6.5AI score0.01229EPSS
Exploits2
exploitpack
exploitpack
added 2019/08/26 12:0 a.m.29 views

openITCOCKPIT 3.6.1-2 - Cross-Site Request Forgery

openITCOCKPIT 3.6.1-2 - Cross-Site Request Forgery Exploit Title: openITCOCKPIT 3.6.1-2 - CSRF 2 RCE Google Dork: N/A Date: 26-08-2019 Exploit Author: Julian Rittweger Vendor Homepage: https://openitcockpit.io/ Software Link:...

0.2AI score
Exploits0
Packet Storm
Packet Storm
added 2019/08/26 12:0 a.m.196 views

openITCOCKPIT 3.6.1-2 Cross Site Request Forgery

Exploit Title: openITCOCKPIT 3.6.1-2 - CSRF 2 RCE Google Dork: N/A Date: 26-08-2019 Exploit Author: Julian Rittweger Vendor Homepage: https://openitcockpit.io/ Software Link: https://github.com/it-novum/openITCOCKPIT/releases/tag/openITCOCKPIT-3.6.1-2 Fixed in: 3.7.1 |...

0.3AI score0.01229EPSS
Exploits2
Exploit DB
Exploit DB
added 2019/08/26 12:0 a.m.340 views

openITCOCKPIT 3.6.1-2 - Cross-Site Request Forgery

Exploit Title: openITCOCKPIT 3.6.1-2 - CSRF 2 RCE Google Dork: N/A Date: 26-08-2019 Exploit Author: Julian Rittweger Vendor Homepage: https://openitcockpit.io/ Software Link: https://github.com/it-novum/openITCOCKPIT/releases/tag/openITCOCKPIT-3.6.1-2 Fixed in: 3.7.1 |...

7.4AI score
Exploits0
NVD
NVD
added 2019/08/23 1:15 p.m.11 views

CVE-2019-15493

openITCOCKPIT before 3.7.1 allows deletion of files, aka RVID 4-445b21...

7.5CVSS7.6AI score0.0118EPSS
Exploits0References1
NVD
NVD
added 2019/08/23 1:15 p.m.17 views

CVE-2019-15490

openITCOCKPIT before 3.7.1 allows code injection, aka RVID 1-445b21...

9.8CVSS9.6AI score0.01656EPSS
Exploits0References1
NVD
NVD
added 2019/08/23 1:15 p.m.11 views

CVE-2019-15492

openITCOCKPIT before 3.7.1 has reflected XSS, aka RVID 3-445b21...

6.1CVSS6.4AI score0.00822EPSS
Exploits0References1
NVD
NVD
added 2019/08/23 1:15 p.m.19 views

CVE-2019-15491

openITCOCKPIT before 3.7.1 has CSRF, aka RVID 2-445b21...

8.8CVSS8.7AI score0.006EPSS
Exploits0References1
NVD
NVD
added 2019/08/23 1:15 p.m.19 views

CVE-2019-15494

openITCOCKPIT before 3.7.1 allows SSRF, aka RVID 5-445b21...

9.8CVSS9.5AI score0.01514EPSS
Exploits0References1
OSV
OSV
added 2019/08/23 1:15 p.m.10 views

CVE-2019-15491

openITCOCKPIT before 3.7.1 has CSRF, aka RVID 2-445b21...

8.8CVSS7.2AI score
Exploits0References1
OSV
OSV
added 2019/08/23 1:15 p.m.9 views

CVE-2019-15494

openITCOCKPIT before 3.7.1 allows SSRF, aka RVID 5-445b21...

9.8CVSS7.1AI score
Exploits0References1
OSV
OSV
added 2019/08/23 1:15 p.m.14 views

CVE-2019-15490

openITCOCKPIT before 3.7.1 allows code injection, aka RVID 1-445b21...

9.8CVSS7.3AI score
Exploits0References1
OSV
OSV
added 2019/08/23 1:15 p.m.15 views

CVE-2019-15492

openITCOCKPIT before 3.7.1 has reflected XSS, aka RVID 3-445b21...

6.1CVSS7.1AI score
Exploits0References1
Rows per page
Query Builder