cockpit-hq/cockpit vulnerabilities

Browse known CVEs and advisories by package and ecosystem. Severity tells you the worst case. What determines real risk is whether the vulnerable code actually runs in your applications.

Get a demo

Browse by ecosystem

npmPyPIMavenGoRubyGemsCargoNuGetComposerpubSwiftGitHub Actions
CVE-IDSeverityPackage summary
CVE-2026-23695Mediumcockpit-hq/cockpit: Cockpit CMS: Stored cross-site scripting vulnerability in the Set field type's Display template…CVE-2026-38993Mediumcockpit-hq/cockpit: Cockpit is vulnerable to directory traversalCVE-2026-38991Highcockpit-hq/cockpit: Cockpit Vulnerable to Unrestricted Upload of File with Dangerous TypeCVE-2026-38992Criticalcockpit-hq/cockpit: Cockpit is vulnerable to arbitrary code executionCVE-2026-6626Lowcockpit-hq/cockpit: Cockpit has NoSQL Injection Through Content Aggregation PipelinesCVE-2026-31891Highcockpit-hq/cockpit: Cockpit CMS has SQL Injection in MongoLite Aggregation Optimizer via toJsonExtractRaw() CVE-2025-7053Mediumcockpit-hq/cockpit: Cockpit - Content Platform vulnerable to XSS through name or email argument namesCVE-2025-1025Highcockpit-hq/cockpit: Cockpit Arbitrary File UploadCVE-2024-4825Criticalcockpit-hq/cockpit: Cockpit CMS contains an arbitrary file upload vulenrabilityCVE-2024-2001Mediumcockpit-hq/cockpit: Cockpit CMS Cross-Site Scripting vulnerabilityCVE-2023-41564Mediumcockpit-hq/cockpit: Cockpit CMS arbitrary file upload vulnerabilityCVE-2023-4451Mediumcockpit-hq/cockpit: Cockpit Cross-site Scripting vulnerabilityCVE-2023-4433Highcockpit-hq/cockpit: Cockpit Cross-site Scripting vulnerabilityCVE-2023-4432Highcockpit-hq/cockpit: Cockpit Cross-site Scripting vulnerabilityCVE-2023-4422Mediumcockpit-hq/cockpit: Cockpit Cross-site Scripting vulnerabilityCVE-2023-4395Highcockpit-hq/cockpit: Cockpit Cross-site Scripting vulnerabilityCVE-2023-4321Highcockpit-hq/cockpit: Cockpit Cross-site Scripting vulnerabilityCVE-2023-4196Highcockpit-hq/cockpit: Cockpit Cross-site Scripting vulnerabilityCVE-2023-4195Criticalcockpit-hq/cockpit: Cockpit PHP Remote File Inclusion vulnerabilityCVE-2023-37649Highcockpit-hq/cockpit: Cockpit CMS vulnerable to incorrect access controlCVE-2023-37650Highcockpit-hq/cockpit: Cockpit CMS Cross-Site Request Forgery vulnerabilityCVE-2023-1313Highcockpit-hq/cockpit: cockpit-hq/cockpit is vulnerable to unrestricted file uploads CVE-2023-1160Mediumcockpit-hq/cockpit: Cockpit Uses Platform-Dependent Third Party ComponentsCVE-2023-0780Mediumcockpit-hq/cockpit: Improper Restriction of Rendered UI Layers or Frames in cockpit-hq/cockpitCVE-2023-0759Highcockpit-hq/cockpit: privilege chaining in cockpit-hq/cockpit

Stop the waste.
Protect your environment with Kodem.