Description
The web application uses Cockpit CMS. This version of Cockpit CMS has several NoSQL injection vulnerabilities. Successful attacks of these vulnerabilities can result in takeover of the server.
Remediation
Upgrade to the latest version of Cockpit
References
Related Vulnerabilities
WordPress Plugin Support Ticket System Multiple SQL Injection Vulnerabilities (1.2)
WordPress Plugin WP Visitor Statistics (Real Time Traffic) SQL Injection (5.7)
WordPress Plugin Viral Quiz Maker-OnionBuzz SQL Injection (1.2.1)
WordPress Plugin All Video Gallery 'vid' Parameter Multiple SQL Injection Vulnerabilities (1.1)
WordPress Plugin Z-Vote 'zvote' Parameter SQL Injection (1.1)