51 matches found
1Panel Command Injection Vulnerability
1Panel is an open source Linux server operation and maintenance management panel of the Chinese 1Panel community . 1Panel suffers from a command injection vulnerability that stems from incomplete certificate validation, which can be exploited by an attacker to cause remote code execution...
1Panel 安全漏洞
1Panel is an open source Linux server operations and management panel for the Chinese 1panel community. A security vulnerability exists in versions prior to 1Panel 1.10.3-lts, which stems from password validation in the code using the ! = symbol instead of hmac.Equal, which could lead to password...
PT-2024-3101 · 1Panel · 1Panel
Name of the Vulnerable Software and Affected Versions: 1Panel versions prior to 1.10.3-lts Description: The issue is related to the password verification in the source code of 1Panel, which uses the != symbol instead of hmac.Equal. This may lead to a timing attack vulnerability, potentially...
1Panel Security Vulnerability
1Panel is an open source Linux server operations and management panel for the Chinese 1panel community. A security vulnerability exists in versions prior to 1Panel 1.10.1-lts, which stems from the fact that users can use Burp to gain unauthorized access to console pages...
CVE-2023-39966
creationtimestamp| type| source ---|---|--- 2023-08-10 06:49:21+00:00| published-proof-of-concept| https://github.com/1Panel-dev/1Panel/security/advisories/GHSA-hf7j-xj3w-87g4...
1Panel Path Traversal Vulnerability
1Panel is an open source Linux server O&M panel for the Chinese 1panel community. A path traversal vulnerability exists in 1Panel version 1.4.3. An attacker can exploit this vulnerability to read any important configuration file on the server...
1Panel Security Vulnerability
1Panel is an open source Linux server O&M panel for the Chinese 1panel community. A security vulnerability exists in 1Panel version 1.4.3. An attacker can exploit the vulnerability to download arbitrary files through the API interface...
PT-2023-27178 · 1Panel · 1Panel
Name of the Vulnerable Software and Affected Versions: 1Panel versions 1.4.3 Description: An arbitrary file write vulnerability could lead to direct control of the server. In the api/v1/file.go file, there is a function called SaveContentthat,It that receives JSON data sent by users in the form o...
1Panel Security Vulnerability
1Panel is an open source Linux server operations and management panel for the Chinese 1panel community. A security vulnerability exists in 1Panel version 1.4.3, which stems from a lack of parameter filtering...
PT-2023-25987 · 1Panel · 1Panel
Name of the Vulnerable Software and Affected Versions: 1Panel versions prior to 1.4.3 Description: An OS command injection vulnerability exists in 1Panel firewall functionality. A specially-crafted HTTP request can lead to arbitrary command execution. An attacker can make an authenticated HTTP...
1Panel 操作系统命令注入漏洞
1Panel is an open source Linux server operations and management panel for the Chinese 1panel community. Operating system command injection vulnerability exists in versions prior to 1Panel 1.4.3. The vulnerability stems from the presence of an operating system command injection vulnerability, whic...