CVE-2024-34067 Multiple cross site scripting (XSS) vulnerabilities in the admin area of Pterodactyl panel

Pterodactyl is a free, open-source game server management panel built with PHP, React, and Go. Importing a malicious egg or gaining access to wings instance could lead to cross site scripting XSS on the panel, which could be used to gain an administrator account on the panel. Specifically, the...

Pterodactyl 跨站脚本漏洞

Pterodactyl is an open source game server administration panel built using PHP, Nodejs and Go. A cross-site scripting vulnerability exists in versions of Pterodactyl prior to 1.11.6, which stems from the fact that importing a malicious egg or gaining access to a wings instance may result in...