Lucene search
K

6 matches found

RedhatCVE
RedhatCVE
added 2025/05/23 6:25 a.m.8 views

CVE-2024-44765

An Improper Authorization Access Control Misconfiguration vulnerability in MGT-COMMERCE GmbH CloudPanel v2.0.0 to v2.4.2 allows low-privilege users to bypass access controls and gain unauthorized access to sensitive configuration files and administrative functionality...

6.5CVSS7AI score0.00652EPSS
Exploits1References1
NVD
NVD
added 2024/06/14 6:15 p.m.36 views

CVE-2024-24320

Directory Traversal vulnerability in Mgt-commerce CloudPanel v.2.0.0 thru v.2.4.0 allows a remote attacker to obtain sensitive information and execute arbitrary code via the service parameter of the load-logfiles function...

8.8CVSS0.04019EPSS
Exploits1References1
OSV
OSV
added 2024/06/14 6:15 p.m.30 views

CVE-2024-24320

Directory Traversal vulnerability in Mgt-commerce CloudPanel v.2.0.0 thru v.2.4.0 allows a remote attacker to obtain sensitive information and execute arbitrary code via the service parameter of the load-logfiles function...

8.8CVSS7.5AI score0.04019EPSS
Exploits1References1
Cvelist
Cvelist
added 2024/06/14 12:0 a.m.51 views

CVE-2024-24320

Directory Traversal vulnerability in Mgt-commerce CloudPanel v.2.0.0 thru v.2.4.0 allows a remote attacker to obtain sensitive information and execute arbitrary code via the service parameter of the load-logfiles function...

0.04019EPSS
Exploits1References1
CVE
CVE
added 2024/06/14 12:0 a.m.67 views

CVE-2024-24320

CVE-2024-24320 describes a Directory Traversal in Mgt-commerce CloudPanel (versions 2.0.0–2.4.0 ). The vulnerability allows a remote attacker to obtain sensitive information and may execute arbitrary code through the service parameter of the load-logfiles function. Root cause is reported as direc...

8.8CVSS7.7AI score0.04019EPSS
Exploits1References1Affected Software1
Cvelist
Cvelist
added 2023/03/21 7:25 p.m.36 views

CVE-2023-0391 MGT-COMMERCE CloudPanel Shared Certificate

MGT-COMMERCE CloudPanel ships with a static SSL certificate to encrypt communications to the administrative interface, shared across every installation of CloudPanel. This behavior was observed in version 2.2.0. There has been no indication from the vendor this has been addressed in version 2.2.1...

8.2AI score0.00599EPSS
Exploits1References2
Rows per page
Query Builder