CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Agentejo: >> Cockpit >> 0.10.2 Security Vulnerabilities

CVE-2020-14408

An issue was discovered in Agentejo Cockpit 0.10.2. Insufficient sanitization of the to parameter in the /auth/login route allows for injection of arbitrary JavaScript code into a web page's content, creating a Reflected XSS attack vector.

CVSS Score

6.1

EPSS Score

0.016

Published

2020-06-17

Page 3

Vulnerabilities

Vulnerable Software

Agentejo: >> Cockpit >> 0.10.2 Security Vulnerabilities

Products

Pricing

Contact Us