Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

9 matches found

EUVD
EUVDadded 2025/10/07 12:30 a.m.4 views

EUVD-2018-18266

Malware in sbrugna...

5.4CVSS6AI score0.00254EPSS
Exploits0References2
EUVD
EUVDadded 2025/10/07 12:30 a.m.3 views

EUVD-2015-5636

Malware in sbrugna...

8.8CVSS8.6AI score0.0014EPSS
Exploits0References2
RedhatCVE
RedhatCVEadded 2025/05/22 6:11 a.m.7 views

CVE-2019-10695

When using the cd4pe::rootconfiguration task to configure a Continuous Delivery for PE installation, the root user’s username and password were exposed in the job’s Job Details pane in the PE console. These issues have been resolved in version 1.2.1 of the puppetlabs/cd4pe module...

6.5CVSS7.3AI score0.00384EPSS
Exploits0References1
Prion
Prionadded 2020/02/27 1:15 a.m.10 views

Cross site request forgery (csrf)

Parts of the Puppet Enterprise Console 3.x were found to be susceptible to clickjacking and CSRF Cross-Site Request Forgery attacks. This would allow an attacker to redirect user input to an untrusted site or hijack a user session...

6.8CVSS7.1AI score0.0014EPSS
Exploits0References1Affected Software1
CNVD
CNVDadded 2018/05/10 12:0 a.m.1 views

Puppet Enterprise Console Cross-Site Scripting Vulnerability (CNVD-2018-09252)

Puppet is a set of configuration management tools based on client/server C/S architecture from Puppet Labs in the U.S. It can be used to manage configuration files, users, cron tasks, packages, system services, etc. Puppet Enterprise is its enterprise version.Puppet Enterprise Console is one of t...

5.4CVSS6.2AI score0.00254EPSS
Exploits0References1
NVD
NVDadded 2018/05/08 6:29 p.m.11 views

CVE-2018-6511

A cross-site scripting vulnerability in Puppet Enterprise Console of Puppet Enterprise allows a user to inject scripts into the Puppet Enterprise Console when using the Puppet Enterprise Console. Affected releases are Puppet Puppet Enterprise: 2017.3.x versions prior to 2017.3.6...

5.4CVSS5.2AI score0.00254EPSS
Exploits0References1
OSV
OSVadded 2018/05/08 6:29 p.m.3 views

CVE-2018-6510

A cross-site scripting vulnerability in Puppet Enterprise Console of Puppet Enterprise allows a user to inject scripts into the Puppet Enterprise Console when using the Orchestrator. Affected releases are Puppet Puppet Enterprise: 2017.3.x versions prior to 2017.3.6...

5.4CVSS5.7AI score0.00254EPSS
Exploits0References1
CVE
CVEadded 2018/05/08 6:0 p.m.61 views

CVE-2018-6510

CVE-2018-6510 describes a cross-site scripting vulnerability in Puppet Enterprise Console (used with the Orchestrator). The issue allows an attacker to inject scripts into the Puppet Enterprise Console and is tied to Puppet Enterprise: 2017.3.x versions prior to 2017.3.6. The root cause is improp...

5.4CVSS5.2AI score0.00254EPSS
Exploits0References1Affected Software1
Debian CVE
Debian CVEadded 2018/05/08 6:0 p.m.13 views

CVE-2018-6510

A cross-site scripting vulnerability in Puppet Enterprise Console of Puppet Enterprise allows a user to inject scripts into the Puppet Enterprise Console when using the Orchestrator. Affected releases are Puppet Puppet Enterprise: 2017.3.x versions prior to 2017.3.6...

5.4CVSS5.6AI score0.00254EPSS
Exploits0
Rows per page
Query Builder