13 matches found
Cluster Control CMON API - Directory Traversal
Directory Traversal vulnerability in Severalnines Cluster Control 1.9.8 before 1.9.8-9778, 2.0.0 before 2.0.0-9779, and 2.1.0 before 2.1.0-9780 allows a remote attacker to include and display file content in an HTTP request via the CMON API. id: CVE-2024-41628 info: name: Cluster Control CMON API...
CVE-2024-41628
Directory Traversal vulnerability in Severalnines Cluster Control 1.9.8 before 1.9.8-9778, 2.0.0 before 2.0.0-9779, and 2.1.0 before 2.1.0-9780 allows a remote attacker to include and display file content in an HTTP request via the CMON API...
EUVD-2018-2886
Malware in sbrugna...
CVE-2024-41628
Directory Traversal vulnerability in Severalnines Cluster Control 1.9.8 before 1.9.8-9778, 2.0.0 before 2.0.0-9779, and 2.1.0 before 2.1.0-9780 allows a remote attacker to include and display file content in an HTTP request via the CMON API...
CVE-2024-41628
Directory Traversal vulnerability in Severalnines Cluster Control 1.9.8 before 1.9.8-9778, 2.0.0 before 2.0.0-9779, and 2.1.0 before 2.1.0-9780 allows a remote attacker to include and display file content in an HTTP request via the CMON API...
Severalnines Cluster Control 安全漏洞
Severalnines Cluster Control is agentless management and automation software for database clusters from Severalnines. Severalnines Cluster Control versions 1.9.8 prior to 1.9.8-9778, 2.0.0 prior to 2.0.0-9779, and 2.1.0 prior to 2.1.0-9780 have a security vulnerability that originates from the...
CVE-2024-41628
This CVE (CVE-2024-41628) affects Severalnines Cluster Control CMON API. The vulnerability is a Directory Traversal that allows an unauthenticated remote attacker to include and display arbitrary server files via HTTP requests to CMON API endpoints. Affected versions are Cluster Control 1.9.8 bef...
PT-2024-29470 · Severalnines · Severalnines Clustercontrol
Name of the Vulnerable Software and Affected Versions: Severalnines Cluster Control versions 1.9.8 through 1.9.8-9777 Severalnines Cluster Control versions 2.0.0 through 2.0.0-9778 Severalnines Cluster Control versions 2.1.0 through 2.1.0-9779 Description: A Directory Traversal issue allows a...
CVE-2024-41628
Directory Traversal vulnerability in Severalnines Cluster Control 1.9.8 before 1.9.8-9778, 2.0.0 before 2.0.0-9779, and 2.1.0 before 2.1.0-9780 allows a remote attacker to include and display file content in an HTTP request via the CMON API...
Severalnines ClusterControl Detection
Detection of Severalnines ClusterControl. The script sends a connection request to the server and attempts to detect Severalnines ClusterControl and to extract its version. SPDX-FileCopyrightText: 2018 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are...
Cross site scripting
Severalnines ClusterControl before 1.6.0-4699 allows XSS...
CVE-2018-10817
Severalnines ClusterControl before 1.6.0-4699 allows XSS...
CVE-2018-10817
CVE-2018-10817 affects Severalnines ClusterControl: a cross-site scripting (XSS) vulnerability in the web interface present in versions prior to 1.6.0-4699. Remote attackers could inject arbitrary scripts/HTML. Exploitation details and fixes beyond this are not specified in the provided documents...