Vulnerabilidades en Cockpit-HQ
17 resultadosCVE-2023-4451MEDIUMCross-site Scripting (XSS) - Reflected in cockpit-hq/cockpitEPSS 2.3%CVE-2022-2818CRITICALImproper Removal of Sensitive Information Before Storage or Transfer in cockpit-hq/cockpitEPSS 1.3%CVE-2023-1313HIGHUnrestricted Upload of File with Dangerous Type in cockpit-hq/cockpitEPSS 1.0%CVE-2022-2713HIGHInsufficient Session Expiration in cockpit-hq/cockpitEPSS 1.0%CVE-2023-4195CRITICALPHP Remote File Inclusion in cockpit-hq/cockpitEPSS 0.8%CVE-2023-4422MEDIUMCross-site Scripting (XSS) - Stored in cockpit-hq/cockpitEPSS 0.6%CVE-2023-4321HIGHCross-site Scripting (XSS) - Stored in cockpit-hq/cockpitEPSS 0.6%CVE-2023-4432HIGHCross-site Scripting (XSS) - Reflected in cockpit-hq/cockpitEPSS 0.5%CVE-2023-4395HIGHCross-site Scripting (XSS) - Stored in cockpit-hq/cockpitEPSS 0.5%CVE-2023-4433HIGHCross-site Scripting (XSS) - Stored in cockpit-hq/cockpitEPSS 0.5%CVE-2023-4196HIGHCross-site Scripting (XSS) - Stored in cockpit-hq/cockpitEPSS 0.4%CVE-2026-31891HIGHCockpit CMS has SQL Injection in MongoLite Aggregation Optimizer via toJsonExtractRaw()EPSS 0.4%CVE-2023-0780MEDIUMImproper Restriction of Rendered UI Layers or Frames in cockpit-hq/cockpitEPSS 0.4%CVE-2023-1160MEDIUMUse of Platform-Dependent Third Party Components in cockpit-hq/cockpitEPSS 0.3%CVE-2023-0759MEDIUMPrivilege Chaining in cockpit-hq/cockpitEPSS 0.3%CVE-2026-6626MEDIUMCockpit-HQ Cockpit Asset Handler/Aggregate data query logic injectionEPSS 0.2%CVE-2026-23695MEDIUMCockpit CMS 2.14.0 Stored XSS via Set Field Display TemplateEPSS 0.1%