Lucene search
+L

8 matches found

OSV
OSV
added 2023/09/09 12:30 a.m.26 views

GHSA-38VF-35CG-M73W Cockpit CMS arbitrary file upload vulnerability

An arbitrary file upload vulnerability in the Upload Asset function of Cockpit CMS v2.6.3 allows attackers to execute arbitrary code via uploading a crafted .shtml file...

6.1CVSS6.5AI score0.0096EPSS
Exploits1References3
Github Security Blog
Github Security Blog
added 2023/09/09 12:30 a.m.30 views

Cockpit CMS arbitrary file upload vulnerability

An arbitrary file upload vulnerability in the Upload Asset function of Cockpit CMS v2.6.3 allows attackers to execute arbitrary code via uploading a crafted .shtml file...

6.1CVSS7.8AI score0.0096EPSS
Exploits1References3Affected Software1
NVD
NVD
added 2023/09/08 11:15 p.m.28 views

CVE-2023-41564

An arbitrary file upload vulnerability in the Upload Asset function of Cockpit CMS v2.6.3 allows attackers to execute arbitrary code via uploading a crafted .shtml file...

6.1CVSS6.7AI score0.0096EPSS
Exploits1References1
ATTACKERKB
ATTACKERKB
added 2023/09/08 11:15 p.m.6 views

CVE-2023-41564

An arbitrary file upload vulnerability in the Upload Asset function of Cockpit CMS v2.6.3 allows attackers to execute arbitrary code via uploading a crafted .shtml file...

6.1CVSS6.8AI score0.0096EPSS
Exploits1References2
Prion
Prion
added 2023/09/08 11:15 p.m.22 views

Design/Logic Flaw

An arbitrary file upload vulnerability in the Upload Asset function of Cockpit CMS v2.6.3 allows attackers to execute arbitrary code via uploading a crafted .shtml file...

5.8CVSS6.6AI score0.0096EPSS
Exploits1References1Affected Software1
Vulnrichment
Vulnrichment
added 2023/09/08 12:0 a.m.12 views

CVE-2023-41564

An arbitrary file upload vulnerability in the Upload Asset function of Cockpit CMS v2.6.3 allows attackers to execute arbitrary code via uploading a crafted .shtml file...

7.6AI score0.0096EPSS
Exploits1References1
CNNVD
CNNVD
added 2023/09/08 12:0 a.m.7 views

Cockpit Code Issues Vulnerabilities

Cockpit is an interactive server management interface. A security vulnerability exists in Cockpit CMS version v2.6.3, which originates from an arbitrary file upload vulnerability in the Upload Asset feature. The vulnerability can be exploited to execute arbitrary code by uploading a .shtml file...

6.1CVSS7.8AI score0.0096EPSS
Exploits1References2
OSV
OSV
added 2023/09/08 12:0 a.m.16 views

CVE-2023-41564

An arbitrary file upload vulnerability in the Upload Asset function of Cockpit CMS v2.6.3 allows attackers to execute arbitrary code via uploading a crafted .shtml file...

6.1CVSS8AI score0.0096EPSS
Exploits1References3
Rows per page
Query Builder