Filters

Software

fit2cloud jumpserver
7
fit2cloud 1panel
3
fit2cloud cloudexplorer lite
3
fit2cloud kubepi
2
fit2cloud koko
1
fit2cloud kubeoperator
1
fit2cloud rackshift
1

Fit2cloud JumpserverArbitrary File Read in Ansible Playbooks in Jumpserver

critical
10
First published (updated )
CVE-2024-40628

Fit2cloud JumpserverArbitrary File Write in Ansible Playbooks leads to RCE in Jumpserver

critical
10
First published (updated )
CVE-2024-40629

Fit2cloud 1panel1Panel SQL injection

critical
10
First published (updated )
CVE-2024-39911

go/github.com/1Panel-dev/1Panela sqlinjection in 1Panel

critical
9.8
First published (updated )
CVE-2024-39907

Fit2cloud JumpserverInsecure Permissions vulnerability in JumpServer GPLv3 v.3.8.0 allows a remote attacker to execute a…

critical
9.8
First published (updated )
CVE-2023-48193

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Read MoreStart Free Trial

Fit2cloud Cloudexplorer LiteCloudExplorer Lite permission bypass vulnerability

critical
9.8
First published (updated )
CVE-2023-44397

Fit2cloud JumpserverSSH public key login without private key challenge if mfa is enabled in jumpserver

critical
9.8
First published (updated )
CVE-2023-42818

Fit2cloud JumpserverRemote code execution on the host system via MongoDB shell in jumpserver

critical
9.9
First published (updated )
CVE-2023-43651

Fit2cloud JumpserverNon-MFA account takeover via using only SSH public key to login in jumpserver

critical
9.1
First published (updated )
CVE-2023-43652

FIT2CLOUD RackShiftSQL Injection

critical
9.8
First published (updated )
CVE-2023-42405

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Read MoreStart Free Trial

Fit2cloud 1panel1Panel arbitrary file write vulnerability exists in the background

critical
9.8
First published (updated )
CVE-2023-39966

Fit2cloud Cloudexplorer LiteCommand injection vulnerability in module management function in CloudExplorer Lite

critical
9.8
First published (updated )
CVE-2023-38692

Fit2cloud KubepiPrivilege Escalation in kubepi

critical
9.1
EPSS
0.05%
First published (updated )
CVE-2023-37917

Fit2cloud Cloudexplorer LiteCVE-2023-34240

First published (updated )
CVE-2023-34240

Fit2cloud JumpserverCommand Injection

critical
9.9
First published (updated )
CVE-2023-28110

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Read MoreStart Free Trial

Fit2cloud KubeoperatorKubeOperator is vulnerable to unauthorized access to system API

critical
9.8
First published (updated )
CVE-2023-22480

Fit2cloud KubepiKubePi's Hardcoded Jwtsigkeys allows malicious actor to login with a forged JWT token

critical
9.8
First published (updated )
CVE-2023-22463

Company

Resources

Contact

SecAlerts Pty Ltd.
132 Wickham Terrace
Fortitude Valley,
QLD 4006, Australia
info@secalerts.co
By using SecAlerts services, you agree to our services end-user license agreement. This website is safeguarded by reCAPTCHA and governed by the Google Privacy Policy and Terms of Service. All names, logos, and brands of products are owned by their respective owners, and any usage of these names, logos, and brands for identification purposes only does not imply endorsement. If you possess any content that requires removal, please get in touch with us.
© 2024 SecAlerts Pty Ltd.
ABN: 70 645 966 203, ACN: 645 966 203