OpenPanel 安全漏洞

OpenPanel is a web hosting panel from OpenPanel, Inc. A security vulnerability exists in OpenPanel version v0.3.4, which is caused by a directory traversal vulnerability in the Copy and View functions of the File Manager component...

CVE-2024-53582

CVE-2024-53582 affects OpenPanel v0.3.4, where the Copy and View functions in the File Manager are vulnerable to directory traversal via crafted HTTP requests. The root cause is a directory traversal flaw in the File Manager’s Copy and View endpoints, enabling an attacker to access filesystem pat...

CVE-2024-53584

OpenPanel v0.3.4 was discovered to contain an OS command injection vulnerability via the timezone parameter...

CVE-2024-53537

An issue in OpenPanel v0.3.4 to v0.2.1 allows attackers to execute a directory traversal in File Actions of File Manager...

CVE-2024-53584

OpenPanel v0.3.4 was discovered to contain an OS command injection vulnerability via the timezone parameter...

OpenPanel 安全漏洞

OpenPanel is a web hosting panel from OpenPanel, Inc. A security vulnerability exists in OpenPanel version v0.3.4, which stems from the inclusion of an OS command injection vulnerability that allows an attacker to inject malicious commands via the timezone parameter. The vulnerability allows an...

OpenPanel 安全漏洞

OpenPanel is a web hosting panel from OpenPanel, Inc. A security vulnerability exists in OpenPanel v0.3.4, which originates in the File Manager component of OpenPanel, and can be exploited to access and view a directory traversal operation by constructing a malicious HTTP request and utilizing th...

PT-2025-2971 · Openpanel · Openpanel

Name of the Vulnerable Software and Affected Versions: OpenPanel version 0.3.4 Description: A command injection vulnerability was discovered in OpenPanel, allowing an attacker to inject system commands via the timezone parameter. This issue can potentially be exploited to execute arbitrary system...

CVE-2024-53582

An issue found in the Copy and View functions in the File Manager component of OpenPanel v0.3.4 allows attackers to execute a directory traversal via a crafted HTTP request...

CVE-2024-53537

OpenPanel OpenPanel vulnerability CVE-2024-53537 affects the OpenPanel web hosting panel (File Manager) with directory traversal in File Actions of the File Manager. Affected versions range from v0.2.1 up to v0.3.4; the root cause is improper handling of file actions that enables traversal to acc...

PT-2025-2970 · Openpanel · Openpanel

Name of the Vulnerable Software and Affected Versions: OpenPanel version 0.3.4 Description: An issue in the Copy and View functions of the File Manager component allows attackers to execute a directory traversal via a crafted HTTP request. Recommendations: For OpenPanel version 0.3.4, consider...

CVE-2024-53584

CVE-2024-53584 pertains to OpenPanel v0.3.4, which contains an OS command injection vulnerability via the timezone parameter . The vulnerability affects the endpoint that handles timezone settings (notably POST /server/timezone), enabling an attacker to inject and execute arbitrary system command...

CVE-2024-53537

An issue in OpenPanel v0.3.4 to v0.2.1 allows attackers to execute a directory traversal in File Actions of File Manager...

OpenPanel 0.3.4 Directory Traversal Vulnerability

Exploit Title: OpenPanel 0.3.4 - Directory Traversal in Copy Function of File Manager Exploit Author: Korn Chaisuwan, Punthat Siriwan, Pongtorn Angsuchotmetee Vendor Homepage: https://openpanel.com/ Software Link: https://openpanel.com/ Version: 0.3.4 Tested on: macOS CVE : CVE-2024-53582 POST...

OpenPanel 0.3.4 Command Injection Vulnerability

Exploit Title: OpenPanel 0.3.4 - OS Command Injection via The Timezone Parameter Exploit Author: Korn Chaisuwan, Punthat Siriwan, Pongtorn Angsuchotmetee Vendor Homepage: https://openpanel.com/ Software Link: https://openpanel.com/ Version: 0.3.4 Tested on: macOS CVE : CVE-2024-53584 POST...

OpenPanel 0.3.4 Command Injection

OpenPanel version 0.3.4 suffers from a remote command injection vulnerability via the timezone parameter. Exploit Title: OpenPanel 0.3.4 - OS Command Injection via The Timezone Parameter Date: Nov 25, 2024 Exploit Author: Korn Chaisuwan, Punthat Siriwan, Pongtorn Angsuchotmetee Vendor Homepage:...

OpenPanel 0.3.4 Directory Traversal

OpenPanel version 0.3.4 suffers from multiple directory traversal vulnerabilities. Exploit Title: OpenPanel 0.3.4 - Directory Traversal in Copy Function of File Manager Date: Nov 25, 2024 Exploit Author: Korn Chaisuwan, Punthat Siriwan, Pongtorn Angsuchotmetee Vendor Homepage:...

PT-2023-8685 · Apple · Apple Macos

Name of the Vulnerable Software and Affected Versions: macOS versions prior to 13.6.4 macOS versions prior to 14.2 Description: An access issue was addressed with additional sandbox restrictions. This issue may allow an app to read arbitrary files. The vulnerability is related to the lack of...