7 matches found
EUVD-2023-40574
Malicious code in bioql PyPI...
CVE-2023-46157
File-Manager in MGT CloudPanel 2.0.0 through 2.3.2 allows the lowest privilege user to achieve OS command injection by changing file ownership and changing file permissions to 4755...
CVE-2023-33747
CloudPanel v2.2.2 allows attackers to execute a path traversal...
PT-2024-20356 · Mgt Commerce · Mgt-Commerce Cloudpanel
Name of the Vulnerable Software and Affected Versions: Mgt-commerce CloudPanel versions 2.0.0 through 2.4.0 Description: A Directory Traversal issue allows a remote attacker to obtain sensitive information and execute arbitrary code via the service parameter of the load-logfiles function...
CVE-2023-36630
In CloudPanel before 2.3.1, insecure file upload leads to privilege escalation and authentication bypass...
CVE-2023-33747
CloudPanel v2.2.2 allows attackers to execute a path traversal...
PT-2022-6464 · Mgt Commerce · Mgt-Commerce Cloudpanel
Name of the Vulnerable Software and Affected Versions: MGT-COMMERCE CloudPanel version 2.2.0 Description: The issue is related to the use of a static SSL certificate with a hardcoded cryptographic key in MGT-COMMERCE CloudPanel, which is shared across every installation. This could allow a remote...