Lucene search
K

8 matches found

OSV
OSV
added 2022/05/23 8:16 p.m.19 views

GHSA-CMV8-6362-R5W9 Malicious HTML+XHR Artifact Privilege Escalation in Argo Workflows

Argo Workflows is an open source container-native workflow engine for orchestrating parallel jobs on Kubernetes. The attacker creates a workflow that produces a HTML artifact that contains a HTML file that contains a script which uses XHR calls to interact with the Argo Server API. The attacker...

7.1CVSS6.9AI score0.0086EPSS
Exploits0References5
NVD
NVD
added 2022/05/06 12:15 a.m.24 views

CVE-2022-29164

Argo Workflows is an open source container-native workflow engine for orchestrating parallel jobs on Kubernetes. In affected versions an attacker can create a workflow which produces a HTML artifact containing an HTML file that contains a script which uses XHR calls to interact with the Argo Serv...

7.1CVSS0.0086EPSS
Exploits0References3
Prion
Prion
added 2022/05/06 12:15 a.m.16 views

Hardcoded credentials

Argo Workflows is an open source container-native workflow engine for orchestrating parallel jobs on Kubernetes. In affected versions an attacker can create a workflow which produces a HTML artifact containing an HTML file that contains a script which uses XHR calls to interact with the Argo Serv...

4.6CVSS6.6AI score0.0086EPSS
Exploits0References3Affected Software1
CVE
CVE
added 2022/05/05 11:15 p.m.622 views

CVE-2022-29164

Affected software: Argo Workflows (Kubernetes) Vulnerability summary: An attacker can craft a HTML artifact in a workflow that contains a script using XHR to interact with the Argo Server API. The attacker emails a link to the deep-link artifact; when opened by a victim, the script executes with ...

7.1CVSS6.5AI score0.0086EPSS
Exploits0References3Affected Software1
Cvelist
Cvelist
added 2022/05/05 11:15 p.m.29 views

CVE-2022-29164 Privilege Escalation in argo-workflows

Argo Workflows is an open source container-native workflow engine for orchestrating parallel jobs on Kubernetes. In affected versions an attacker can create a workflow which produces a HTML artifact containing an HTML file that contains a script which uses XHR calls to interact with the Argo Serv...

7.1CVSS6.8AI score0.0086EPSS
Exploits0References3
OSV
OSV
added 2022/05/05 11:15 p.m.17 views

CVE-2022-29164 Privilege Escalation in argo-workflows

Argo Workflows is an open source container-native workflow engine for orchestrating parallel jobs on Kubernetes. In affected versions an attacker can create a workflow which produces a HTML artifact containing an HTML file that contains a script which uses XHR calls to interact with the Argo Serv...

7.1CVSS6.5AI score0.0086EPSS
Exploits0References5
The Hacker News
The Hacker News
added 2013/05/29 8:54 p.m.9 views

Sandcat Browser 4.0 released, new tools added for Pen-Testers

Sandcat Browser, The fastest web browser with many useful security and developer oriented tools updated to version 4.0 with the fastest scripting language packed with features for pen-testers. Sandcat 4 adds a large number of enhancements, new features, extensions and bug fixes, and provides a...

6.5AI score
Exploits0
The Hacker News
The Hacker News
added 2013/05/29 9:54 a.m.11 views

Sandcat Browser 4.0 released, new tools added for Pen-Testers

Sandcat Browser, The fastest web browser with many useful security and developer oriented tools updated to version 4.0 with the fastest scripting language packed with features for pen-testers. Sandcat 4 adds a large number of enhancements, new features, extensions and bug fixes, and provides a...

6.5AI score
Exploits0
Rows per page
Query Builder