Description
The web application uses Cockpit CMS. This version of Cockpit CMS has several NoSQL injection vulnerabilities. Successful attacks of these vulnerabilities can result in takeover of the server.
Remediation
Upgrade to the latest version of Cockpit
References
Related Vulnerabilities
WordPress Plugin Quiz And Survey Master-Best Quiz, Exam and Survey SQL Injection (7.1.11)
WordPress Plugin Tutor LMS-eLearning and online course solution Multiple Vulnerabilities (1.7.6)
WordPress Plugin WP-Forum SQL Injection (1.7.4)
WordPress Plugin GD Star Rating 'de' Parameter SQL Injection (1.9.10)
WordPress Plugin SEO Redirection-301 Redirect Manager SQL Injection (3.5)