CVE-2018-1000080
CVE-2018-1000080 affects Ajenti version 2. The vulnerability is an insecure permissions issue in the Plugins download feature that can allow a normal user to download arbitrary plugins. Exploitation, as described in the sources, involves crafting and sending a specific request so the server respo...