Lucene search
+L

136 matches found

CVE
CVE
added 2026/02/20 5:23 p.m.24 views

CVE-2026-24891

openITCOCKPIT prior to 5.4.0 contains an unsafe deserialization sink in the Gearman worker (oitc_gearman) that calls PHP’s unserialize() on job payloads without class restrictions or origin validation. This enables PHP Object Injection when Gearman is exposed to untrusted systems or network acces...

7.5CVSS5.9AI score0.00359EPSS
Exploits1References2Affected Software1
OSV
OSV
added 2026/02/20 5:23 p.m.7 views

CVE-2026-24891 openITCOCKPIT has Unsafe PHP Deserialization in Gearman Worker Allowing Conditional Object Injection

openITCOCKPIT is an open source monitoring tool built for different monitoring engines like Nagios, Naemon and Prometheus. Versions 5.3.1 and below contain an unsafe deserialization sink in the Gearman worker implementation. The worker function registered as oitcgearman calls PHP's unserialize on...

7.5CVSS5.9AI score0.00359EPSS
Exploits1References4
Positive Technologies
Positive Technologies
added 2026/02/20 12:0 a.m.9 views

PT-2026-21278

openITCOCKPIT is an open source monitoring tool built for different monitoring engines like Nagios, Naemon and Prometheus. Versions 5.3.1 and below contain an unsafe deserialization sink in the Gearman worker implementation. The worker function registered as oitc gearman calls PHP's unserialize o...

7.5CVSS5.8AI score0.00359EPSS
Exploits1References3
Positive Technologies
Positive Technologies
added 2026/02/20 12:0 a.m.9 views

PT-2026-21297

openITCOCKPIT is an open source monitoring tool built for different monitoring engines like Nagios, Naemon and Prometheus. openITCOCKPIT Community Edition 5.3.1 and earlier contains an unsafe PHP deserialization pattern in the processing of changelog entries. Serialized changelog data derived fro...

7.5CVSS6.3AI score0.00813EPSS
Exploits1References4
CNNVD
CNNVD
added 2026/02/20 12:0 a.m.9 views

openITCOCKPIT 代码问题漏洞

openITCOCKPIT is an open-source system monitoring software. Versions of openITCOCKPIT 5.3.1 and earlier have code vulnerabilities. These vulnerabilities stem from insecure deserialization points in the Gearman worker implementation, which may lead to PHP object injection attacks...

7.5CVSS5.9AI score0.00359EPSS
Exploits1References2
CNNVD
CNNVD
added 2026/02/20 12:0 a.m.8 views

openITCOCKPIT 代码问题漏洞

openITCOCKPIT is an open-source system monitoring software. Versions of openITCOCKPIT 5.3.1 and earlier have code vulnerabilities. These vulnerabilities stem from unsafe PHP deserialization patterns when processing change log entries, which may lead to potential PHP object injection vulnerabiliti...

8.8CVSS5.9AI score0.00813EPSS
Exploits1References3
RedhatCVE
RedhatCVE
added 2026/01/09 9:53 a.m.8 views

CVE-2020-10789

openITCOCKPIT before 3.7.3 has a web-based terminal that allows attackers to execute arbitrary OS commands via shell metacharacters that are mishandled on an su command line in app/Lib/SudoMessageInterface.php...

10CVSS7.9AI score0.01947EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2026/01/09 9:53 a.m.9 views

CVE-2020-10790

openITCOCKPIT before 3.7.3 has unnecessary files such as Lodash files under the web root, which leads to XSS...

5.4CVSS6.9AI score0.00906EPSS
Exploits0References1
EUVD
EUVD
added 2025/10/07 12:30 a.m.3 views

EUVD-2020-3201

Malware in sbrugna...

9.1CVSS9AI score0.0156EPSS
Exploits0References3
EUVD
EUVD
added 2025/10/07 12:30 a.m.3 views

EUVD-2019-6484

Malware in sbrugna...

9.8CVSS9.5AI score0.01514EPSS
Exploits0References2
EUVD
EUVD
added 2025/10/07 12:30 a.m.4 views

EUVD-2019-2238

Malware in sbrugna...

6.1CVSS6.3AI score0.01229EPSS
Exploits2References4
EUVD
EUVD
added 2025/10/07 12:30 a.m.3 views

EUVD-2020-3204

Malware in sbrugna...

6.5CVSS6.5AI score0.01151EPSS
Exploits0References3
EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2019-6481

Malware in sbrugna...

8.8CVSS8.8AI score0.006EPSS
Exploits0References2
EUVD
EUVD
added 2025/10/07 12:30 a.m.3 views

EUVD-2020-3203

Malware in sbrugna...

5.4CVSS5.6AI score0.00906EPSS
Exploits0References4
EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2019-6483

Malware in sbrugna...

7.5CVSS7.6AI score0.0118EPSS
Exploits0References2
EUVD
EUVD
added 2025/10/07 12:30 a.m.3 views

EUVD-2019-6482

Malware in sbrugna...

6.1CVSS6.3AI score0.00822EPSS
Exploits0References2
EUVD
EUVD
added 2025/10/07 12:30 a.m.4 views

EUVD-2019-6480

Malware in sbrugna...

9.8CVSS9.5AI score0.01656EPSS
Exploits0References2
EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2020-3202

Malware in sbrugna...

10CVSS9.2AI score0.01947EPSS
Exploits0References3
EUVD
EUVD
added 2025/10/03 8:7 p.m.4 views

EUVD-2023-43896

Malicious code in bioql PyPI...

6.5CVSS5.8AI score0.00475EPSS
Exploits1References2
EUVD
EUVD
added 2025/10/03 8:7 p.m.5 views

EUVD-2023-40607

Malicious code in bioql PyPI...

8.8CVSS8.5AI score0.0071EPSS
Exploits0References2
Rows per page
Query Builder