{"url":"http://public2.vulnerablecode.io/api/packages/967899?format=json","purl":"pkg:composer/cockpit-hq/cockpit@2.13.1","type":"composer","namespace":"cockpit-hq","name":"cockpit","version":"2.13.1","qualifiers":{},"subpath":"","is_vulnerable":true,"next_non_vulnerable_version":null,"latest_non_vulnerable_version":null,"affected_by_vulnerabilities":[{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/68081?format=json","vulnerability_id":"VCID-7tss-33s5-4bhg","summary":"Cockpit 2.13.5 and earlier is vulnerable to directory traversal via the Buckets component. This vulnerability allows authenticated attackers to write files to arbitrary locations within the uploads directory or overwrite assets with malicious versions.","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-38993.json","reference_id":"","reference_type":"","scores":[{"value":"8.1","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:H"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-38993.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2026-38993","reference_id":"","reference_type":"","scores":[{"value":"0.00168","scoring_system":"epss","scoring_elements":"0.37811","published_at":"2026-06-11T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2026-38993"},{"reference_url":"https://felsec.com/posts/cockpit-cms-2.13.5-multi-vulns","reference_id":"","reference_type":"","scores":[{"value":"6.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://felsec.com/posts/cockpit-cms-2.13.5-multi-vulns"},{"reference_url":"https://github.com/Cockpit-HQ/Cockpit","reference_id":"","reference_type":"","scores":[{"value":"6.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://github.com/Cockpit-HQ/Cockpit"},{"reference_url":"https://nvd.nist.gov/vuln/detail/CVE-2026-38993","reference_id":"","reference_type":"","scores":[{"value":"6.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://nvd.nist.gov/vuln/detail/CVE-2026-38993"},{"reference_url":"https://github.com/Cockpit-HQ/Cockpit/releases/tag/2.14.0","reference_id":"2.14.0","reference_type":"","scores":[{"value":"6.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2026-04-29T20:13:30Z/"}],"url":"https://github.com/Cockpit-HQ/Cockpit/releases/tag/2.14.0"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2463843","reference_id":"2463843","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2463843"},{"reference_url":"https://felsec.com/posts/cockpit-cms-2.13.5-multi-vulns/","reference_id":"cockpit-cms-2.13.5-multi-vulns","reference_type":"","scores":[{"value":"6.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2026-04-29T20:13:30Z/"}],"url":"https://felsec.com/posts/cockpit-cms-2.13.5-multi-vulns/"},{"reference_url":"https://github.com/advisories/GHSA-p46p-7pmj-m34f","reference_id":"GHSA-p46p-7pmj-m34f","reference_type":"","scores":[{"value":"MODERATE","scoring_system":"cvssv3.1_qr","scoring_elements":""}],"url":"https://github.com/advisories/GHSA-p46p-7pmj-m34f"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/373598?format=json","purl":"pkg:composer/cockpit-hq/cockpit@2.14.0","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-5v6s-35hb-bqe3"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:composer/cockpit-hq/cockpit@2.14.0"}],"aliases":["CVE-2026-38993","GHSA-p46p-7pmj-m34f"],"risk_score":null,"exploitability":null,"weighted_severity":null,"resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-7tss-33s5-4bhg"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/71361?format=json","vulnerability_id":"VCID-bzej-dv67-u3e8","summary":"Cockpit is a headless content management system. Any Cockpit CMS instance running version 2.13.4 or earlier with API access enabled is potentially affected by a a SQL Injection vulnerability in the MongoLite Aggregation Optimizer. Any deployment where the `/api/content/aggregate/{model}` endpoint is publicly accessible or reachable by untrusted users may be vulnerable, and attackers in possession of a valid read-only API key (the lowest privilege level) can exploit this vulnerability — no admin access is required. An attacker can inject arbitrary SQL via unsanitized field names in aggregation queries, bypass the `_state=1` published-content filter to access unpublished or restricted content, and extract unauthorized data from the underlying SQLite content database. This vulnerability has been patched in version 2.13.5. The fix applies the same field-name sanitization introduced in v2.13.3 for `toJsonPath()` to the `toJsonExtractRaw()` method in `lib/MongoLite/Aggregation/Optimizer.php`, closing the injection vector in the Aggregation Optimizer.","references":[{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2026-31891","reference_id":"","reference_type":"","scores":[{"value":"0.00013","scoring_system":"epss","scoring_elements":"0.02365","published_at":"2026-06-11T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2026-31891"},{"reference_url":"https://github.com/Cockpit-HQ/Cockpit","reference_id":"","reference_type":"","scores":[{"value":"7.7","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:H/I:N/A:N"},{"value":"HIGH","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://github.com/Cockpit-HQ/Cockpit"},{"reference_url":"https://nvd.nist.gov/vuln/detail/CVE-2026-31891","reference_id":"","reference_type":"","scores":[{"value":"7.7","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:H/I:N/A:N"},{"value":"HIGH","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://nvd.nist.gov/vuln/detail/CVE-2026-31891"},{"reference_url":"https://github.com/Cockpit-HQ/Cockpit/releases/tag/2.13.5","reference_id":"2.13.5","reference_type":"","scores":[{"value":"7.7","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:H/I:N/A:N"},{"value":"HIGH","scoring_system":"generic_textual","scoring_elements":""},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-03-18T18:33:48Z/"}],"url":"https://github.com/Cockpit-HQ/Cockpit/releases/tag/2.13.5"},{"reference_url":"https://github.com/advisories/GHSA-7x5c-vfhj-9628","reference_id":"GHSA-7x5c-vfhj-9628","reference_type":"","scores":[{"value":"HIGH","scoring_system":"cvssv3.1_qr","scoring_elements":""}],"url":"https://github.com/advisories/GHSA-7x5c-vfhj-9628"},{"reference_url":"https://github.com/Cockpit-HQ/Cockpit/security/advisories/GHSA-7x5c-vfhj-9628","reference_id":"GHSA-7x5c-vfhj-9628","reference_type":"","scores":[{"value":"7.7","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:H/I:N/A:N"},{"value":"HIGH","scoring_system":"cvssv3.1_qr","scoring_elements":""},{"value":"HIGH","scoring_system":"generic_textual","scoring_elements":""},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-03-18T18:33:48Z/"}],"url":"https://github.com/Cockpit-HQ/Cockpit/security/advisories/GHSA-7x5c-vfhj-9628"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/375240?format=json","purl":"pkg:composer/cockpit-hq/cockpit@2.13.5","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-7tss-33s5-4bhg"},{"vulnerability":"VCID-eha2-26dv-6uag"},{"vulnerability":"VCID-kuqb-k2ry-gkgt"},{"vulnerability":"VCID-qhxf-7sb4-9bej"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:composer/cockpit-hq/cockpit@2.13.5"}],"aliases":["CVE-2026-31891","GHSA-7x5c-vfhj-9628"],"risk_score":null,"exploitability":null,"weighted_severity":null,"resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-bzej-dv67-u3e8"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/68074?format=json","vulnerability_id":"VCID-eha2-26dv-6uag","summary":"Cockpit v2.13.5 and earlier is vulnerable to arbitrary code execution via the filter parameter within multiple endpoints. This vulnerability allows an attacker to run system commands on the underlying infrastructure via the MongoLite $func operator.","references":[{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2026-38992","reference_id":"","reference_type":"","scores":[{"value":"0.00111","scoring_system":"epss","scoring_elements":"0.29202","published_at":"2026-06-11T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2026-38992"},{"reference_url":"https://felsec.com/posts/cockpit-cms-2.13.5-multi-vulns","reference_id":"","reference_type":"","scores":[{"value":"9.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H"},{"value":"CRITICAL","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://felsec.com/posts/cockpit-cms-2.13.5-multi-vulns"},{"reference_url":"https://github.com/Cockpit-HQ/Cockpit","reference_id":"","reference_type":"","scores":[{"value":"9.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H"},{"value":"CRITICAL","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://github.com/Cockpit-HQ/Cockpit"},{"reference_url":"https://nvd.nist.gov/vuln/detail/CVE-2026-38992","reference_id":"","reference_type":"","scores":[{"value":"9.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H"},{"value":"CRITICAL","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://nvd.nist.gov/vuln/detail/CVE-2026-38992"},{"reference_url":"https://github.com/Cockpit-HQ/Cockpit/releases/tag/2.14.0","reference_id":"2.14.0","reference_type":"","scores":[{"value":"9.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H"},{"value":"CRITICAL","scoring_system":"generic_textual","scoring_elements":""},{"value":"Track*","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:P/A:Y/T:T/P:M/B:A/M:M/D:R/2026-04-30T13:02:52Z/"}],"url":"https://github.com/Cockpit-HQ/Cockpit/releases/tag/2.14.0"},{"reference_url":"https://felsec.com/posts/cockpit-cms-2.13.5-multi-vulns/","reference_id":"cockpit-cms-2.13.5-multi-vulns","reference_type":"","scores":[{"value":"9.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H"},{"value":"Track*","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:P/A:Y/T:T/P:M/B:A/M:M/D:R/2026-04-30T13:02:52Z/"}],"url":"https://felsec.com/posts/cockpit-cms-2.13.5-multi-vulns/"},{"reference_url":"https://github.com/advisories/GHSA-fm6c-rhcf-7439","reference_id":"GHSA-fm6c-rhcf-7439","reference_type":"","scores":[{"value":"CRITICAL","scoring_system":"cvssv3.1_qr","scoring_elements":""}],"url":"https://github.com/advisories/GHSA-fm6c-rhcf-7439"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/373598?format=json","purl":"pkg:composer/cockpit-hq/cockpit@2.14.0","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-5v6s-35hb-bqe3"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:composer/cockpit-hq/cockpit@2.14.0"}],"aliases":["CVE-2026-38992","GHSA-fm6c-rhcf-7439"],"risk_score":null,"exploitability":null,"weighted_severity":null,"resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-eha2-26dv-6uag"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/75705?format=json","vulnerability_id":"VCID-kuqb-k2ry-gkgt","summary":"A vulnerability was detected in Cockpit-HQ Cockpit up to 2.13.5. Affected by this issue is some unknown functionality of the component Asset Handler/Aggregate Handler. The manipulation results in improper neutralization of special elements in data query logic. It is possible to launch the attack remotely. The exploit is now public and may be used. The vendor was contacted early about this disclosure but did not respond in any way.","references":[{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2026-6626","reference_id":"","reference_type":"","scores":[{"value":"0.00078","scoring_system":"epss","scoring_elements":"0.23299","published_at":"2026-06-11T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2026-6626"},{"reference_url":"https://github.com/Cockpit-HQ/Cockpit","reference_id":"","reference_type":"","scores":[{"value":"6.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L"},{"value":"2.1","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N/E:P"},{"value":"LOW","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://github.com/Cockpit-HQ/Cockpit"},{"reference_url":"https://nvd.nist.gov/vuln/detail/CVE-2026-6626","reference_id":"","reference_type":"","scores":[{"value":"6.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L"},{"value":"2.1","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N/E:P"},{"value":"LOW","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://nvd.nist.gov/vuln/detail/CVE-2026-6626"},{"reference_url":"https://vuldb.com/vuln/358261","reference_id":"358261","reference_type":"","scores":[{"value":"6.5","scoring_system":"cvssv2","scoring_elements":"AV:N/AC:L/Au:S/C:P/I:P/A:P/E:POC/RL:ND/RC:UR"},{"value":"6.3","scoring_system":"cvssv3","scoring_elements":"CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L/E:P/RL:X/RC:R"},{"value":"6.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L/E:P/RL:X/RC:R"},{"value":"6.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L"},{"value":"2.1","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N/E:P"},{"value":"5.3","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N/E:P"},{"value":"LOW","scoring_system":"generic_textual","scoring_elements":""},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2026-04-20T15:23:30Z/"}],"url":"https://vuldb.com/vuln/358261"},{"reference_url":"https://vuldb.com/submit/792601","reference_id":"792601","reference_type":"","scores":[{"value":"6.5","scoring_system":"cvssv2","scoring_elements":"AV:N/AC:L/Au:S/C:P/I:P/A:P/E:POC/RL:ND/RC:UR"},{"value":"6.3","scoring_system":"cvssv3","scoring_elements":"CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L/E:P/RL:X/RC:R"},{"value":"6.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L/E:P/RL:X/RC:R"},{"value":"6.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L"},{"value":"2.1","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N/E:P"},{"value":"5.3","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N/E:P"},{"value":"LOW","scoring_system":"generic_textual","scoring_elements":""},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2026-04-20T15:23:30Z/"}],"url":"https://vuldb.com/submit/792601"},{"reference_url":"https://vuldb.com/vuln/358261/cti","reference_id":"cti","reference_type":"","scores":[{"value":"6.5","scoring_system":"cvssv2","scoring_elements":"AV:N/AC:L/Au:S/C:P/I:P/A:P/E:POC/RL:ND/RC:UR"},{"value":"6.3","scoring_system":"cvssv3","scoring_elements":"CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L/E:P/RL:X/RC:R"},{"value":"6.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L/E:P/RL:X/RC:R"},{"value":"6.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L"},{"value":"2.1","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N/E:P"},{"value":"5.3","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N/E:P"},{"value":"LOW","scoring_system":"generic_textual","scoring_elements":""},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2026-04-20T15:23:30Z/"}],"url":"https://vuldb.com/vuln/358261/cti"},{"reference_url":"https://github.com/advisories/GHSA-5pv2-86qj-5jf9","reference_id":"GHSA-5pv2-86qj-5jf9","reference_type":"","scores":[{"value":"LOW","scoring_system":"cvssv3.1_qr","scoring_elements":""}],"url":"https://github.com/advisories/GHSA-5pv2-86qj-5jf9"},{"reference_url":"https://github.com/NicolasPauferro/studiesofnosqli","reference_id":"studiesofnosqli","reference_type":"","scores":[{"value":"6.5","scoring_system":"cvssv2","scoring_elements":"AV:N/AC:L/Au:S/C:P/I:P/A:P/E:POC/RL:ND/RC:UR"},{"value":"6.3","scoring_system":"cvssv3","scoring_elements":"CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L/E:P/RL:X/RC:R"},{"value":"6.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L"},{"value":"6.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L/E:P/RL:X/RC:R"},{"value":"2.1","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N/E:P"},{"value":"5.3","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N/E:P"},{"value":"LOW","scoring_system":"generic_textual","scoring_elements":""},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2026-04-20T15:23:30Z/"}],"url":"https://github.com/NicolasPauferro/studiesofnosqli"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/373598?format=json","purl":"pkg:composer/cockpit-hq/cockpit@2.14.0","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-5v6s-35hb-bqe3"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:composer/cockpit-hq/cockpit@2.14.0"}],"aliases":["CVE-2026-6626","GHSA-5pv2-86qj-5jf9"],"risk_score":null,"exploitability":null,"weighted_severity":null,"resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-kuqb-k2ry-gkgt"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/68116?format=json","vulnerability_id":"VCID-qhxf-7sb4-9bej","summary":"Cockpit 2.13.5 and earlier is affected by a misconfiguration within the Bucket component _isFileTypeAllowed function where a specially crafted filename bypasses an extension filter. This allows an authenticated attacker to rename arbitrary files with the .php file extension enabling arbitrary code to be executed on the underlying server.","references":[{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2026-38991","reference_id":"","reference_type":"","scores":[{"value":"0.00035","scoring_system":"epss","scoring_elements":"0.10933","published_at":"2026-06-11T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2026-38991"},{"reference_url":"https://felsec.com/posts/cockpit-cms-2.13.5-multi-vulns","reference_id":"","reference_type":"","scores":[{"value":"8.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H"},{"value":"HIGH","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://felsec.com/posts/cockpit-cms-2.13.5-multi-vulns"},{"reference_url":"https://github.com/Cockpit-HQ/Cockpit","reference_id":"","reference_type":"","scores":[{"value":"8.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H"},{"value":"HIGH","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://github.com/Cockpit-HQ/Cockpit"},{"reference_url":"https://nvd.nist.gov/vuln/detail/CVE-2026-38991","reference_id":"","reference_type":"","scores":[{"value":"8.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H"},{"value":"HIGH","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://nvd.nist.gov/vuln/detail/CVE-2026-38991"},{"reference_url":"https://github.com/Cockpit-HQ/Cockpit/releases/tag/2.14.0","reference_id":"2.14.0","reference_type":"","scores":[{"value":"8.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H"},{"value":"HIGH","scoring_system":"generic_textual","scoring_elements":""},{"value":"Track*","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:P/A:N/T:T/P:M/B:A/M:M/D:R/2026-04-29T20:22:57Z/"}],"url":"https://github.com/Cockpit-HQ/Cockpit/releases/tag/2.14.0"},{"reference_url":"https://felsec.com/posts/cockpit-cms-2.13.5-multi-vulns/","reference_id":"cockpit-cms-2.13.5-multi-vulns","reference_type":"","scores":[{"value":"8.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H"},{"value":"Track*","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:P/A:N/T:T/P:M/B:A/M:M/D:R/2026-04-29T20:22:57Z/"}],"url":"https://felsec.com/posts/cockpit-cms-2.13.5-multi-vulns/"},{"reference_url":"https://github.com/advisories/GHSA-j2rx-4jg9-79mw","reference_id":"GHSA-j2rx-4jg9-79mw","reference_type":"","scores":[{"value":"HIGH","scoring_system":"cvssv3.1_qr","scoring_elements":""}],"url":"https://github.com/advisories/GHSA-j2rx-4jg9-79mw"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/373598?format=json","purl":"pkg:composer/cockpit-hq/cockpit@2.14.0","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-5v6s-35hb-bqe3"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:composer/cockpit-hq/cockpit@2.14.0"}],"aliases":["CVE-2026-38991","GHSA-j2rx-4jg9-79mw"],"risk_score":null,"exploitability":null,"weighted_severity":null,"resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-qhxf-7sb4-9bej"}],"fixing_vulnerabilities":[],"risk_score":null,"resource_url":"http://public2.vulnerablecode.io/packages/pkg:composer/cockpit-hq/cockpit@2.13.1"}