Cockpit-Hq Cockpit vulnerabilities
25 known vulnerabilities affecting cockpit-hq/cockpit.
Total CVEs
25
CISA KEV
0
Public exploits
2
Exploited in wild
0
Severity breakdown
CRITICAL3HIGH12MEDIUM10
Vulnerabilities
Page 1 of 2
CVE-2025-1025P2HIGHCVSS 7.5PoCfixed in 2.4.12025-02-05
CVE-2025-1025 [HIGH] CWE-434 CVE-2025-1025: Versions of the package cockpit-hq/cockpit before 2.4.1 are vulnerable to Arbitrary File Upload wher
Versions of the package cockpit-hq/cockpit before 2.4.1 are vulnerable to Arbitrary File Upload where an attacker can use different extension to bypass the upload filter.
ghsanvdosv
CVE-2026-38992P2CRITICAL≥ 0, < 2.14.02026-04-29
CVE-2026-38992 [CRITICAL] CWE-94 Cockpit is vulnerable to arbitrary code execution
Cockpit is vulnerable to arbitrary code execution
Cockpit versions 2.13.5 and earlier are vulnerable to arbitrary code execution via the filter parameter within multiple endpoints. This vulnerability allows an attacker to run system commands on the underlying infrastructure via the MongoLite $func operator.
ghsa
CVE-2024-4825P2CRITICAL≥ 0, < 2.7.02024-05-14
CVE-2024-4825 [CRITICAL] CWE-434 Cockpit CMS contains an arbitrary file upload vulenrability
Cockpit CMS contains an arbitrary file upload vulenrability
A vulnerability has been discovered in Agentejo Cockpit CMS v0.5.5 that consists in an arbitrary file upload in ‘/media/api’ parameter via post request. An attacker could upload files to the server, compromising the entire infrastructure.
ghsaosv
CVE-2023-4451P3MEDIUMPoC≥ 0, ≤ 2.6.32023-08-20
CVE-2023-4451 [MEDIUM] CWE-79 Cockpit Cross-site Scripting vulnerability
Cockpit Cross-site Scripting vulnerability
Cross-site Scripting (XSS) - Reflected in GitHub repository cockpit-hq/cockpit version 2.6.3 and prior. A patch is available at commit 30609466c817e39f9de1871559603e93cd4d0d0c and anticipated to be part of version 2.6.4.
ghsaosv
CVE-2026-38991P3HIGH≥ 0, < 2.14.02026-04-29
CVE-2026-38991 [HIGH] CWE-434 Cockpit Vulnerable to Unrestricted Upload of File with Dangerous Type
Cockpit Vulnerable to Unrestricted Upload of File with Dangerous Type
Cockpit versions 2.13.5 and earlier are affected by a misconfiguration within the Bucket component _isFileTypeAllowed function where a specially crafted filename bypasses an extension filter. This allows an authenticated attacker to rename arbitrary files with the .php file extension enabling arbitrary code to be executed on th
ghsa
CVE-2023-1313P3HIGH≥ 0, < 2.4.12023-03-10
CVE-2023-1313 [HIGH] CWE-434 cockpit-hq/cockpit is vulnerable to unrestricted file uploads
cockpit-hq/cockpit is vulnerable to unrestricted file uploads
Unrestricted Upload of File with Dangerous Type in GitHub repository cockpit-hq/cockpit prior to 2.4.1.
ghsaosv
CVE-2026-31891P3MEDIUMCVSS 6.5fixed in 2.13.52026-03-18
CVE-2026-31891 [MEDIUM] CWE-89 CVE-2026-31891: Cockpit is a headless content management system. Any Cockpit CMS instance running version 2.13.4 or
Cockpit is a headless content management system. Any Cockpit CMS instance running version 2.13.4 or earlier with API access enabled is potentially affected by a a SQL Injection vulnerability in the MongoLite Aggregation Optimizer. Any deployment where the `/api/content/aggregate/{model}` endpoint is publicly accessible or reachable by untrusted users
ghsanvdosv
CVE-2023-4195P3CRITICAL≥ 0, < 2.6.32023-08-06
CVE-2023-4195 [CRITICAL] CWE-98 Cockpit PHP Remote File Inclusion vulnerability
Cockpit PHP Remote File Inclusion vulnerability
PHP Remote File Inclusion in GitHub repository cockpit-hq/cockpit prior to 2.6.3. Users may upload php files through the system file upload utility to obtain remote code execution.
ghsaosv
CVE-2026-6626P3MEDIUMCVSS 6.3v2.13.0v2.13.1+4 more2026-04-20
CVE-2026-6626 [MEDIUM] CWE-20 CVE-2026-6626: A vulnerability was detected in Cockpit-HQ Cockpit up to 2.13.5. Affected by this issue is some unkn
A vulnerability was detected in Cockpit-HQ Cockpit up to 2.13.5. Affected by this issue is some unknown functionality of the component Asset Handler/Aggregate Handler. The manipulation results in improper neutralization of special elements in data query logic. It is possible to launch the attack remotely. The exploit is now public and may be used. The
ghsanvd
CVE-2023-37649P3HIGH≥ 0, < 2.6.02023-07-20
CVE-2023-37649 [HIGH] Cockpit CMS vulnerable to incorrect access control
Cockpit CMS vulnerable to incorrect access control
Incorrect access control in the component `/models/Content` of Cockpit CMS v2.5.2 allows unauthorized attackers to access sensitive data.
ghsaosv
CVE-2026-38993P3MEDIUM≥ 0, < 2.14.02026-04-29
CVE-2026-38993 [MEDIUM] CWE-22 Cockpit is vulnerable to directory traversal
Cockpit is vulnerable to directory traversal
Cockpit 2.13.5 and earlier is vulnerable to directory traversal via the Buckets component. This vulnerability allows authenticated attackers to write files to arbitrary locations within the uploads directory or overwrite assets with malicious versions.
ghsa
CVE-2022-2818P3HIGH≥ 0, < 2.2.22022-08-16
CVE-2022-2818 [HIGH] CWE-212 Cockpit Content Platform vulnerable to 2FA bypass
Cockpit Content Platform vulnerable to 2FA bypass
Cockpit Content Platform through version 2.2.1 is vulnerable to a two-factor authentication (2FA) bypass. The 2FA secret is disclosed in a JWT token after user logs into their account, allowing an attacker to bypass the 2FA code. A patch is available on the `develop` branch and is expected to be part of version 2.2.2.
ghsaosv
CVE-2023-0759P3HIGH≥ 0, < 2.3.82023-02-09
CVE-2023-0759 [HIGH] CWE-268 privilege chaining in cockpit-hq/cockpit
privilege chaining in cockpit-hq/cockpit
Privilege Chaining in GitHub repository cockpit-hq/cockpit prior to 2.3.8.
ghsaosv
CVE-2023-37650P3HIGH≥ 0, < 2.6.02023-07-20
CVE-2023-37650 [HIGH] CWE-352 Cockpit CMS Cross-Site Request Forgery vulnerability
Cockpit CMS Cross-Site Request Forgery vulnerability
A Cross-Site Request Forgery (CSRF) in the Admin portal of Cockpit CMS v2.5.2 allows attackers to execute arbitrary Administrator commands.
ghsaosv
CVE-2023-41564P3MEDIUM≥ 0, ≤ 2.6.32023-09-09
CVE-2023-41564 [MEDIUM] CWE-434 Cockpit CMS arbitrary file upload vulnerability
Cockpit CMS arbitrary file upload vulnerability
An arbitrary file upload vulnerability in the Upload Asset function of Cockpit CMS v2.6.3 allows attackers to execute arbitrary code via uploading a crafted `.shtml` file.
ghsaosv
CVE-2025-7053P4MEDIUM≥ 0, < 2.11.42025-07-04
CVE-2025-7053 [MEDIUM] CWE-79 Cockpit - Content Platform vulnerable to XSS through name or email argument names
Cockpit - Content Platform vulnerable to XSS through name or email argument names
A vulnerability was found in Cockpit versions up to 2.11.3. This issue affects some unknown processing instances of the file /system/users/save. The manipulation of the arguments "name" or "email" leads to cross-site scripting. The attack may be initiated remotely. Upgrading to version 2.11.4 will addres
ghsaosv
CVE-2026-23695P4MEDIUMCVSS 5.4≤ 2.14.02026-05-15
CVE-2026-23695 [MEDIUM] CWE-79 CVE-2026-23695: Cockpit CMS through version 2.14.0, patched in commit 72a83fc, contains a stored cross-site scriptin
Cockpit CMS through version 2.14.0, patched in commit 72a83fc, contains a stored cross-site scripting vulnerability in the Set field type's Display template option, where the template string is processed by the $interpolate function using new Function() and rendered via Vue's v-html directive without sanitization. An attacker with content/:models/man
ghsanvd
CVE-2023-4321P4HIGH≥ 0, ≤ 2.6.22023-08-14
CVE-2023-4321 [HIGH] CWE-79 Cockpit Cross-site Scripting vulnerability
Cockpit Cross-site Scripting vulnerability
Cross-site Scripting (XSS) - Stored in GitHub repository cockpit-hq/cockpit 2.6.2 and prior. A patch is available at commit 34ab31ee9362da51b9709e178469dbffd7717249.
ghsaosv
CVE-2023-4432P4HIGH≥ 0, ≤ 2.6.32023-08-19
CVE-2023-4432 [HIGH] CWE-79 Cockpit Cross-site Scripting vulnerability
Cockpit Cross-site Scripting vulnerability
Cross-site Scripting (XSS) - Reflected in GitHub repository cockpit-hq/cockpit version 2.6.3 and prior. A patch is available at commit 2a93d391fbd2dd9e730f65d43b29beb65903d195 and anticipated to be part of version 2.6.4.
ghsaosv
CVE-2023-4395P4HIGH≥ 0, ≤ 2.6.32023-08-17
CVE-2023-4395 [HIGH] CWE-79 Cockpit Cross-site Scripting vulnerability
Cockpit Cross-site Scripting vulnerability
Cross-site Scripting (XSS) - Stored in GitHub repository cockpit-hq/cockpit 2.6.3 and prior. A patch is available at commit 36d1d4d256cbbab028342ba10cc493e5c119172c and anticipated to be part of version 2.6.4.
ghsaosv
1 / 2Next →