Filters
Software
Fit2cloud JumpserverArbitrary File Read in Ansible Playbooks in Jumpserver
10
First published (updated )
Fit2cloud JumpserverArbitrary File Write in Ansible Playbooks leads to RCE in Jumpserver
10
First published (updated )
go/github.com/1Panel-dev/1Panela sqlinjection in 1Panel
9.8
First published (updated )
go/github.com/1Panel-dev/1Panel1Panel set-cookie is missing the Secure keyword
7.5
EPSS
0.06%
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Fit2cloud Cloudexplorer LiteInsecure Permissions vulnerability in fit2cloud Cloud Explorer Lite version 1.4.1, allow local attac…
7.8
First published (updated )
Fit2cloud JumpserverInsecure Permissions vulnerability in JumpServer GPLv3 v.3.8.0 allows a remote attacker to execute a…
9.8
First published (updated )
Fit2cloud JumpserverJumpServer default admin user email leak password reset
5.3
First published (updated )
Fit2cloud Cloudexplorer LiteCloudExplorer Lite permission bypass vulnerability
9.8
First published (updated )
Fit2cloud Jumpserverjumpserver is vulnerable to password brute-force protection bypass via arbitrary IP values
5.3
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Fit2cloud JumpserverSSH public key login without private key challenge if mfa is enabled in jumpserver
9.8
First published (updated )
Fit2cloud JumpserverRemote code execution on the host system via MongoDB shell in jumpserver
9.9
First published (updated )
Fit2cloud JumpserverNon-MFA account takeover via brute-force attack on weak password reset code in jumpserver
8.2
First published (updated )
Fit2cloud JumpserverNon-MFA account takeover via using only SSH public key to login in jumpserver
9.1
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Fit2cloud JumpserverRandom seed leakage in Jumpserver
8.2
First published (updated )
Fit2cloud Cloudexplorer LiteAn issue in CloudExplorer Lite 1.3.1 allows an attacker to obtain sensitive information via the logi…
7.5
First published (updated )
Fit2cloud JumpserverJumpServer session replays download without authentication
8.2
First published (updated )
Fit2cloud Cloudexplorer LiteCloudExplorer Lite sensitive information leakage vulnerability
7.5
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Fit2cloud 1panel1Panel arbitrary file write vulnerability exists in the background
9.8
First published (updated )
Fit2cloud 1panel1Panel Unauthorized access in Backend
6.5
First published (updated )
Fit2cloud 1panel1Panel O&M management panel has a background arbitrary file reading vulnerability
7.5
First published (updated )
Fit2cloud Cloudexplorer LiteCommand injection vulnerability in module management function in CloudExplorer Lite
9.8
First published (updated )
Fit2cloud KubepiLeak password hash of any user
7.5
EPSS
0.08%
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Fit2cloud KubepiPrivilege Escalation in kubepi
9.1
EPSS
0.05%
First published (updated )
Fit2cloud 1panelCommand injection in firewall ip functionality in 1Panel
8.8
First published (updated )
Fit2cloud 1panel1Panel vulnerable to command injection when adding container repositories
8.8
First published (updated )
Fit2cloud 1panel1Panel vulnerable to ommand injection when entering the container terminal
8.8
First published (updated )
Fit2cloud Cloudexplorer LiteCVE-2023-34240
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Fit2cloud Cloudexplorer LiteWeak Password Requirements in cloudexplorer-dev/cloudexplorer-lite
8.8
First published (updated )
Fit2cloud CloudexplorerCloudExplorer Lite is an open source cloud management tool. In affected versions users can add thems…
7.1
First published (updated )
Fit2cloud CloudexplorerCloudExplorer Lite is an open source cloud management platform. In CloudExplorer Lite prior to versi…
7.1
First published (updated )
Fit2cloud Cloudexplorer LiteAuthorization Bypass Through User-Controlled Key in cloudexplorer-dev/cloudexplorer-lite
7.2
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Fit2cloud Cloudexplorer LiteImproper Access Control in cloudexplorer-dev/cloudexplorer-lite
8.8
First published (updated )
Fit2cloud KubeoperatorKubeOperator is vulnerable to unauthorized access to system API
9.8
First published (updated )
go/github.com/KubeOperator/kubepiKubePi vulnerable to session fixation attack
7.5
First published (updated )
Fit2cloud KubepiKubePi is vulnerable to missing authorization
7.5
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Fit2cloud KubepiKubePi's Hardcoded Jwtsigkeys allows malicious actor to login with a forged JWT token
9.8
First published (updated )
Fit2cloud HaloHalo CMS - Stored Cross-Site Scripting (XSS) in Profile Image
5.4
First published (updated )
Fit2cloud HaloHalo CMS - Stored Cross-Site Scripting (XSS) in Article's Title
5.4
First published (updated )