Уязвимость CVE-2021-3660

CVE-2021-3660

CVSS3: 4.3

ubuntu

больше 3 лет назад

Cockpit (and its plugins) do not seem to protect itself against clickjacking. It is possible to render a page from a cockpit server via another website, inside an <iFrame> HTML entry. This may be used by a malicious website in clickjacking or similar attacks.

CVE-2021-3660

CVSS3: 4.3

redhat

около 4 лет назад

Cockpit (and its plugins) do not seem to protect itself against clickjacking. It is possible to render a page from a cockpit server via another website, inside an <iFrame> HTML entry. This may be used by a malicious website in clickjacking or similar attacks.

CVE-2021-3660

CVSS3: 4.3

nvd

больше 3 лет назад

Cockpit (and its plugins) do not seem to protect itself against clickjacking. It is possible to render a page from a cockpit server via another website, inside an <iFrame> HTML entry. This may be used by a malicious website in clickjacking or similar attacks.

CVE-2021-3660

CVSS3: 4.3

debian

больше 3 лет назад

Cockpit (and its plugins) do not seem to protect itself against clickj ...

GHSA-5m9v-2hhc-h2wj

CVSS3: 4.3

github

больше 3 лет назад

Cockpit (and its plugins) do not seem to protect itself against clickjacking. It is possible to render a page from a cockpit server via another website, inside an <iFrame> HTML entry. This may be used by a malicious website in clickjacking or similar attacks.

exploitDog

CVE-2021-3660

Описание

Возможность эксплуатации

Связанные уязвимости