CVSS: 5.5EPSS: 0%CPEs: 1EXPL: 4CVE-2022-42225
https://notcve.org/view.php?id=CVE-2022-42225
24 May 2023 — Jumpserver 2.10.0 <= version <= 2.26.0 contains multiple stored XSS vulnerabilities because of improper filtering of user input, which can execute any javascript under admin's permission. • https://gist.github.com/bybit-sec/eb750c1d906c89e97092b29015472738 • CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') •
CVSS: 8.8EPSS: 0%CPEs: 1EXPL: 1CVE-2023-2845 – Improper Access Control in cloudexplorer-dev/cloudexplorer-lite
https://notcve.org/view.php?id=CVE-2023-2845
23 May 2023 — Improper Access Control in GitHub repository cloudexplorer-dev/cloudexplorer-lite prior to v1.1.0. • https://github.com/cloudexplorer-dev/cloudexplorer-lite/commit/d9f55a44e579d312977b02317b2020de758b763a • CWE-284: Improper Access Control •
CVSS: 7.2EPSS: 0%CPEs: 1EXPL: 1CVE-2023-2844 – Authorization Bypass Through User-Controlled Key in cloudexplorer-dev/cloudexplorer-lite
https://notcve.org/view.php?id=CVE-2023-2844
23 May 2023 — Authorization Bypass Through User-Controlled Key in GitHub repository cloudexplorer-dev/cloudexplorer-lite prior to v1.1.0. • https://github.com/cloudexplorer-dev/cloudexplorer-lite/commit/d9f55a44e579d312977b02317b2020de758b763a • CWE-639: Authorization Bypass Through User-Controlled Key •
CVSS: 9.9EPSS: 0%CPEs: 2EXPL: 1CVE-2023-28110 – JumpServer Koko vulnerable to Command Injection for Kubernetes Connection
https://notcve.org/view.php?id=CVE-2023-28110
16 Mar 2023 — Jumpserver is a popular open source bastion host, and Koko is a Jumpserver component that is the Go version of coco, refactoring coco's SSH/SFTP service and Web Terminal service. Prior to version 2.28.8, using illegal tokens to connect to a Kubernetes cluster through Koko can result in the execution of dangerous commands that may disrupt the Koko container environment and affect normal usage. The vulnerability has been fixed in v2.28.8. • https://github.com/jumpserver/jumpserver/releases/tag/v2.28.8 • CWE-77: Improper Neutralization of Special Elements used in a Command ('Command Injection') •
CVSS: 7.8EPSS: 78%CPEs: 1EXPL: 0CVE-2023-22478 – KubePi is vulnerable to missing authorization
https://notcve.org/view.php?id=CVE-2023-22478
14 Jan 2023 — KubePi is a modern Kubernetes panel. The API interfaces with unauthorized entities and may leak sensitive information. This issue has been patched in version 1.6.4. There are currently no known workarounds. • https://github.com/KubeOperator/KubePi/commit/0c6774bf5d9003ae4d60257a3f207c131ff4a6d6 • CWE-862: Missing Authorization •
CVSS: 10.0EPSS: 79%CPEs: 1EXPL: 0CVE-2023-22480 – KubeOperator is vulnerable to unauthorized access to system API
https://notcve.org/view.php?id=CVE-2023-22480
14 Jan 2023 — KubeOperator is an open source Kubernetes distribution focused on helping enterprises plan, deploy and operate production-level K8s clusters. In KubeOperator versions 3.16.3 and below, API interfaces with unauthorized entities and can leak sensitive information. This vulnerability could be used to take over the cluster under certain conditions. This issue has been patched in version 3.16.4. • https://github.com/KubeOperator/KubeOperator/commit/7ef42bf1c16900d13e6376f8be5ecdbfdfb44aaf • CWE-285: Improper Authorization CWE-863: Incorrect Authorization •
CVSS: 7.5EPSS: 0%CPEs: 1EXPL: 0CVE-2023-22479 – KubePi vulnerable to session fixation attack
https://notcve.org/view.php?id=CVE-2023-22479
10 Jan 2023 — KubePi is a modern Kubernetes panel. A session fixation attack allows an attacker to hijack a legitimate user session, versions 1.6.3 and below are susceptible. A patch will be released in version 1.6.4. KubePi es un panel de Kubernetes moderno. Un ataque de fijación de sesión permite a un atacante secuestrar una sesión de usuario legítima; las versiones 1.6.3 e inferiores son susceptibles. • https://github.com/KubeOperator/KubePi/security/advisories/GHSA-v4w5-r2xc-7f8h • CWE-384: Session Fixation •
CVSS: 10.0EPSS: 89%CPEs: 1EXPL: 1CVE-2023-22463 – KubePi's Hardcoded Jwtsigkeys allows malicious actor to login with a forged JWT token
https://notcve.org/view.php?id=CVE-2023-22463
04 Jan 2023 — KubePi is a k8s panel. The jwt authentication function of KubePi through version 1.6.2 uses hard-coded Jwtsigkeys, resulting in the same Jwtsigkeys for all online projects. This means that an attacker can forge any jwt token to take over the administrator account of any online project. Furthermore, they may use the administrator to take over the k8s cluster of the target enterprise. `session.go`, the use of hard-coded JwtSigKey, allows an attacker to use this value to forge jwt tokens arbitrarily. • https://github.com/KubeOperator/KubePi/blob/da784f5532ea2495b92708cacb32703bff3a45a3/internal/api/v1/session/session.go#L35 • CWE-798: Use of Hard-coded Credentials •
CVSS: 4.8EPSS: 0%CPEs: 1EXPL: 0CVE-2022-28074
https://notcve.org/view.php?id=CVE-2022-28074
22 Apr 2022 — Halo-1.5.0 was discovered to contain a stored cross-site scripting (XSS) vulnerability via \admin\index.html#/system/tools. Se ha detectado que Halo versión 1.5.0, contiene una vulnerabilidad de tipo cross-site scripting (XSS) almacenado por medio de \admin\index.html#/system/tools • https://github.com/halo-dev/halo/issues/1769 • CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') •
CVSS: 5.4EPSS: 0%CPEs: 1EXPL: 1CVE-2022-22124 – Halo CMS - Stored Cross-Site Scripting (XSS) in Profile Image
https://notcve.org/view.php?id=CVE-2022-22124
13 Jan 2022 — In Halo, versions v1.0.0 to v1.4.17 (latest) are vulnerable to Stored Cross-Site Scripting (XSS) in the profile image. An authenticated attacker can upload a carefully crafted SVG file that will trigger arbitrary javascript to run on a victim’s browser. En Halo, versiones v1.0.0 a v1.4.17 (la más reciente) son vulnerables a un ataque de tipo Cross-Site Scripting (XSS) Almacenado en la imagen del perfil. Un atacante autenticado puede subir un archivo SVG cuidadosamente diseñado que desencadenará la ejecución... • https://github.com/halo-dev/halo/blob/v1.4.17/src/main/java/run/halo/app/handler/file/FileHandler.java#L30 • CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') •