Filtered by vendor It-novum
Subscribe
Search
Total
4 CVE
| CVE | Vendors | Products | Updated | CVSS v2 | CVSS v3 |
|---|---|---|---|---|---|
| CVE-2020-10790 | 1 It-novum | 1 Openitcockpit | 2020-03-27 | 3.5 LOW | 5.4 MEDIUM |
| openITCOCKPIT before 3.7.3 has unnecessary files (such as Lodash files) under the web root, which leads to XSS. | |||||
| CVE-2020-10791 | 1 It-novum | 1 Openitcockpit | 2020-03-27 | 4.0 MEDIUM | 6.5 MEDIUM |
| app/Plugin/GrafanaModule/Controller/GrafanaConfigurationController.php in openITCOCKPIT before 3.7.3 allows remote authenticated users to trigger outbound TCP requests (aka SSRF) via the Test Connection feature (aka testGrafanaConnection) of the Grafana Module. | |||||
| CVE-2019-10227 | 1 It-novum | 1 Openitcockpit | 2020-01-09 | 4.3 MEDIUM | 6.1 MEDIUM |
| openITCOCKPIT before 3.7.1 has reflected XSS in the 404-not-found component. | |||||
| CVE-2019-15492 | 1 It-novum | 1 Openitcockpit | 2019-08-26 | 4.3 MEDIUM | 6.1 MEDIUM |
| openITCOCKPIT before 3.7.1 has reflected XSS, aka RVID 3-445b21. | |||||