Lucene search
K

5 matches found

PyPA
PyPA
added 2018/03/13 9:29 p.m.6 views

PYSEC-2018-113

Ajenti version 2 contains an Information Disclosure vulnerability in Line 176 of the code source that can result in user and system enumeration as well as data from the /etc/ajenti/config.yml file. This attack appears to be exploitable via network connectivity to the web application...

7.5CVSS6.8AI score0.01287EPSS
Exploits1References3Affected Software1
PyPA
PyPA
added 2018/03/13 3:29 p.m.6 views

PYSEC-2018-109

Ajenti version version 2 contains a Insecure Permissions vulnerability in Plugins download that can result in The download of any plugins as being a normal user. This attack appear to be exploitable via By knowing how the requisition is made, and sending it as a normal user, the server, in...

6.5CVSS6.8AI score0.00696EPSS
Exploits1References3Affected Software1
PyPA
PyPA
added 2018/03/13 3:29 p.m.7 views

PYSEC-2018-111

Ajenti version version 2 contains a Cross ite Request Forgery CSRF vulnerability in the command execution panel of the tool used to manage the server. that can result in Code execution on the server . This attack appear to be exploitable via Being a CSRF, victim interaction is needed, when the...

8.8CVSS7.5AI score0.01252EPSS
Exploits1References3Affected Software1
PyPA
PyPA
added 2018/03/13 3:29 p.m.7 views

PYSEC-2018-110

Ajenti version version 2 contains a Input Validation vulnerability in ID string on Get-values POST request that can result in Server Crashing. This attack appear to be exploitable via An attacker can freeze te server by sending a giant string to the ID parameter...

7.5CVSS6.9AI score0.01162EPSS
Exploits1References3Affected Software1
OSV
OSV
added 2018/03/13 3:29 p.m.5 views

CVE-2018-1000081

Ajenti version version 2 contains a Input Validation vulnerability in ID string on Get-values POST request that can result in Server Crashing. This attack appear to be exploitable via An attacker can freeze te server by sending a giant string to the ID parameter...

7.5CVSS5.8AI score0.01162EPSS
Exploits1References1
Rows per page
Query Builder