It-Novum: >> Openitcockpit >> 4.6.4 Security Vulnerabilities
Sensitive Cookie in HTTPS Session Without 'Secure' Attribute in GitHub repository it-novum/openitcockpit prior to 4.6.6.
CVSS Score
4.3
EPSS Score
0.0
Published
2023-07-06
it-novum openITCOCKPIT (aka open IT COCKPIT) 4.6.4 before 4.6.5 allows SQL Injection (by authenticated users) via the sort parameter of the API interface.
CVSS Score
8.8
EPSS Score
0.003
Published
2023-06-25
Race Condition within a Thread in GitHub repository it-novum/openitcockpit prior to 4.6.5.
CVSS Score
6.5
EPSS Score
0.0
Published
2023-06-13