Nikita Petrov

2 exploits Active since Dec 2020
CVE-2020-35846 METASPLOIT CRITICAL ruby WORKING POC
Agentejo Cockpit < 0.11.2 - SQL Injection
Agentejo Cockpit before 0.11.2 allows NoSQL injection via the Controller/Auth.php check function.
CVSS 9.8
CVE-2020-35847 METASPLOIT CRITICAL ruby WORKING POC
Cockpit CMS NoSQLi to RCE
Agentejo Cockpit before 0.11.2 allows NoSQL injection via the Controller/Auth.php resetpassword function.
CVSS 9.8