Lucene search
K

81 matches found

RedhatCVE
RedhatCVE
added 2025/05/23 4:1 a.m.6 views

CVE-2023-36630

In CloudPanel before 2.3.1, insecure file upload leads to privilege escalation and authentication bypass...

8.8CVSS7.5AI score0.00874EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2025/05/23 3:59 a.m.9 views

CVE-2023-35885

CloudPanel 2 before 2.3.1 has insecure file-manager cookie authentication...

9.8CVSS6.9AI score0.75315EPSS
Exploits3
RedhatCVE
RedhatCVE
added 2025/05/23 3:54 a.m.6 views

CVE-2023-46157

File-Manager in MGT CloudPanel 2.0.0 through 2.3.2 allows the lowest privilege user to achieve OS command injection by changing file ownership and changing file permissions to 4755...

8.8CVSS7.5AI score0.02317EPSS
Exploits0
RedhatCVE
RedhatCVE
added 2025/05/23 2:4 a.m.9 views

CVE-2023-33747

CloudPanel v2.2.2 allows attackers to execute a path traversal...

7.8CVSS7AI score0.00469EPSS
Exploits3References1
BDU FSTEC
BDU FSTEC
added 2025/03/03 12:0 a.m.8 views

The vulnerability of the clpctlWrapper command in the server and CloudPanel management panel allows a attacker to increase their privileges.

The vulnerability of the clpctlWrapper command in the server and CloudPanel management panel is related to an incorrect limitation on the path name to the restricted directory. Exploiting this vulnerability can allow attackers to increase their privileges...

7.8CVSS7.2AI score0.00469EPSS
Exploits3References5Affected Software1
GithubExploit
GithubExploit
added 2024/12/17 1:29 p.m.568 views

Exploit for CVE-2024-44765

CVE-2024-44765https://nvd.nist.gov/vuln/detail/CVE-2024-447...

6.5CVSS7.3AI score0.00652EPSS
Exploits1
Positive Technologies
Positive Technologies
added 2024/11/08 12:0 a.m.4 views

PT-2024-31241 · Mgt Commerce Gmbh · Cloudpanel

Name of the Vulnerable Software and Affected Versions: MGT-COMMERCE GmbH CloudPanel versions 2.0.0 through 2.4.2 Description: An Improper Authorization Access Control Misconfiguration issue allows low-privilege users to bypass access controls, gaining unauthorized access to sensitive configuratio...

6.5CVSS7.5AI score0.00652EPSS
Exploits1References9
CNNVD
CNNVD
added 2024/11/08 12:0 a.m.4 views

MGT-COMMERCE CloudPanel 安全漏洞

MGT-COMMERCE CloudPanel is a free solution from MGT-COMMERCE Open Source. Designed to ease the burden of managing self-hosted Linux servers. A security vulnerability exists in MGT-COMMERCE CloudPanel versions v2.0.0 through v2.4.2, which stems from improper authorization and allows an attacker to...

6.5CVSS6.5AI score0.00652EPSS
Exploits1References2
NVD
NVD
added 2024/06/14 6:15 p.m.43 views

CVE-2024-24320

Directory Traversal vulnerability in Mgt-commerce CloudPanel v.2.0.0 thru v.2.4.0 allows a remote attacker to obtain sensitive information and execute arbitrary code via the service parameter of the load-logfiles function...

8.8CVSS0.04019EPSS
Exploits1References1
Cvelist
Cvelist
added 2024/06/14 12:0 a.m.53 views

CVE-2024-24320

Directory Traversal vulnerability in Mgt-commerce CloudPanel v.2.0.0 thru v.2.4.0 allows a remote attacker to obtain sensitive information and execute arbitrary code via the service parameter of the load-logfiles function...

0.04019EPSS
Exploits1References1
Positive Technologies
Positive Technologies
added 2024/06/14 12:0 a.m.9 views

PT-2024-20356 · Mgt Commerce · Mgt-Commerce Cloudpanel

Name of the Vulnerable Software and Affected Versions: Mgt-commerce CloudPanel versions 2.0.0 through 2.4.0 Description: A Directory Traversal issue allows a remote attacker to obtain sensitive information and execute arbitrary code via the service parameter of the load-logfiles function...

8.8CVSS8.1AI score0.04019EPSS
Exploits1References6
CNNVD
CNNVD
added 2024/06/14 12:0 a.m.6 views

MGT-COMMERCE CloudPanel Security Vulnerability

MGT-COMMERCE CloudPanel is a free solution from MGT-COMMERCE Open Source. Designed to ease the burden of managing self-hosted Linux servers. A security vulnerability exists in MGT-COMMERCE CloudPanel versions 2.0.0 to 2.4.0, which stems from susceptibility to directory traversal attacks that allo...

8.8CVSS7.5AI score0.04019EPSS
Exploits1References2
CVE
CVE
added 2024/06/14 12:0 a.m.67 views

CVE-2024-24320

CVE-2024-24320 describes a Directory Traversal in Mgt-commerce CloudPanel (versions 2.0.0–2.4.0 ). The vulnerability allows a remote attacker to obtain sensitive information and may execute arbitrary code through the service parameter of the load-logfiles function. Root cause is reported as direc...

8.8CVSS7.7AI score0.04019EPSS
Exploits1References1Affected Software1
OSV
OSV
added 2024/06/14 12:0 a.m.31 views

CVE-2024-24320

Directory Traversal vulnerability in Mgt-commerce CloudPanel v.2.0.0 thru v.2.4.0 allows a remote attacker to obtain sensitive information and execute arbitrary code via the service parameter of the load-logfiles function...

8.8CVSS7.5AI score0.04019EPSS
Exploits1References3
VulnCheck KEV
VulnCheck KEV
added 2024/02/14 12:0 a.m.6 views

VulnCheck KEV: CVE-2023-35885

CloudPanel 2 before 2.3.1 has insecure file-manager cookie authentication...

9.8CVSS7.3AI score0.75315EPSS
Exploits3References1
NVD
NVD
added 2023/12/08 1:15 p.m.17 views

CVE-2023-46157

File-Manager in MGT CloudPanel 2.0.0 through 2.3.2 allows the lowest privilege user to achieve OS command injection by changing file ownership and changing file permissions to 4755...

8.8CVSS0.02317EPSS
Exploits0References2
ATTACKERKB
ATTACKERKB
added 2023/12/08 1:15 p.m.5 views

CVE-2023-46157

File-Manager in MGT CloudPanel 2.0.0 through 2.3.2 allows the lowest privilege user to achieve OS command injection by changing file ownership and changing file permissions to 4755...

8.8CVSS5.8AI score0.02317EPSS
Exploits0References3
Prion
Prion
added 2023/12/08 1:15 p.m.16 views

Command injection

File-Manager in MGT CloudPanel 2.0.0 through 2.3.2 allows the lowest privilege user to achieve OS command injection by changing file ownership and changing file permissions to 4755...

6.5CVSS7.7AI score0.02317EPSS
Exploits0References2Affected Software1
CNNVD
CNNVD
added 2023/12/08 12:0 a.m.5 views

CloudPanel Security Vulnerabilities

CloudPanel is a free software from CloudPanel open source. It is used to configure and manage servers. A security vulnerability exists in MGT CloudPanel versions 2.0.0 through 2.3.2, which stems from a vulnerability that allows a low-privileged user to achieve operating system command injection b...

8.8CVSS8.8AI score0.02317EPSS
Exploits0References3
Vulnrichment
Vulnrichment
added 2023/12/08 12:0 a.m.10 views

CVE-2023-46157

File-Manager in MGT CloudPanel 2.0.0 through 2.3.2 allows the lowest privilege user to achieve OS command injection by changing file ownership and changing file permissions to 4755...

7.5AI score0.02317EPSS
Exploits0References2
Rows per page
Query Builder