nook24

8 exploits Active since Mar 2020
CVE-2020-10790 WRITEUP MEDIUM WRITEUP
openITCOCKPIT < 3.7.3 - Cross-Site Scripting via Unnecessary Files Under Web Root
openITCOCKPIT before 3.7.3 has unnecessary files (such as Lodash files) under the web root, which leads to XSS.
CVSS 5.4
CVE-2026-24892 WRITEUP HIGH WRITEUP
openITCOCKPIT <=5.3.1 - Deserialization
openITCOCKPIT is an open source monitoring tool built for different monitoring engines like Nagios, Naemon and Prometheus. openITCOCKPIT Community Edition 5.3.1 and earlier contains an unsafe PHP deserialization pattern in the processing of changelog entries. Serialized changelog data derived from attacker-influenced application state is unserialized without restricting allowed classes. Although no current application endpoint was found to introduce PHP objects into this data path, the presence of an unrestricted unserialize() call constitutes a latent PHP object injection vulnerability. If future code changes, plugins, or refactors introduce object values into this path, the vulnerability could become immediately exploitable with severe impact, including potential remote code execution.
CVSS 7.5
CVE-2020-10788 WRITEUP CRITICAL WRITEUP
openITCOCKPIT <3.7.3 - Info Disclosure
openITCOCKPIT before 3.7.3 uses the 1fea123e07f730f76e661bced33a94152378611e API key rather than generating a random API Key for WebSocket connections.
CVSS 9.1
CVE-2020-10790 WRITEUP MEDIUM WRITEUP
openITCOCKPIT < 3.7.3 - Cross-Site Scripting via Unnecessary Files Under Web Root
openITCOCKPIT before 3.7.3 has unnecessary files (such as Lodash files) under the web root, which leads to XSS.
CVSS 5.4
CVE-2020-10791 WRITEUP MEDIUM WRITEUP
openITCOCKPIT <3.7.3 - Authenticated SSRF
app/Plugin/GrafanaModule/Controller/GrafanaConfigurationController.php in openITCOCKPIT before 3.7.3 allows remote authenticated users to trigger outbound TCP requests (aka SSRF) via the Test Connection feature (aka testGrafanaConnection) of the Grafana Module.
CVSS 6.5
CVE-2020-10792 WRITEUP HIGH WRITEUP
openITCOCKPIT <= 3.7.2 - Unauthenticated Configuration Manipulation via HTTP Host Header
openITCOCKPIT through 3.7.2 allows remote attackers to configure the self::DEVELOPMENT or self::STAGING option by placing a hostname containing "dev" or "staging" in the HTTP Host header.
CVSS 7.5
CVE-2023-3218 WRITEUP MEDIUM WRITEUP
GitHub it-novum/openitcockpit <4.6.5 - Info Disclosure
Race Condition within a Thread in GitHub repository it-novum/openitcockpit prior to 4.6.5.
CVSS 4.4
CVE-2023-3520 WRITEUP MEDIUM WRITEUP
GitHub openitcockpit <4.6.6 - Info Disclosure
Sensitive Cookie in HTTPS Session Without 'Secure' Attribute in GitHub repository it-novum/openitcockpit prior to 4.6.6.
CVSS 4.6