12 matches found
Siemens SIMATIC
SUMMARY SIMATIC HMI Unified Comfort Panels before V21.0 are affected by a vulnerability that allows an unauthenticated attacker to access the web browser via the help link. This vulnerability allows an attacker to access the web browser through the Control Panel if it is not protected by the...
CVE-2026-23525
1Panel is an open-source, web-based control panel for Linux server management. A stored Cross-Site Scripting XSS vulnerability exists in the 1Panel App Store when viewing application details. Malicious scripts can execute in the context of the user’s browser, potentially compromising session data...
EUVD-2025-201793
1Panel is an open-source, web-based control panel for Linux server management. Versions 2.0.13 and below allow an unauthenticated attacker to disable CAPTCHA verification by abusing a client-controlled parameter. Because the server previously trusted this value without proper validation, CAPTCHA...
accelerometry-annotator (>=3.2.0 <=3.5.3), africanwhisper (>=0.2.1 <=0.9.0) +54 more potentially affected by unknown CVE via panel (>=1.2.3 <=1.7.5)
panel PYPI version =1.2.3, =3.2.0, =0.2.1, =2.3.0, =0.3.1.1, =0.2.0, =0.1.0, =0.1.0, =1.0.2, =0.2.2, =0.2.1, =1.1.0, =2.1.29, =0.1.1.dev0, =0.1.1.dev2 and more Source cves: unknown CVE Source advisory: SNYK:PYTHON-PANEL-11356594...
SQL Injection
1Panel is vulnerable to SQL Injection. The vulnerability is due to improper handling of the User-Agent input, which results in SQL injection...
SQL Injection
1Panel is vulnerable to SQL Injection. The vulnerability is due to insufficient filtering of inputs, leading to arbitrary file writes and remote code executions RCEs...
1Panel Command Injection Vulnerability
1Panel is an open source Linux server O&M panel for the Chinese 1panel community. A command injection vulnerability exists in 1Panel 1.10.1-lts and earlier versions, which stems from a security issue in the function baseApi.UpdateDeviceSwap in /api/v1/toolbox/device/update/swap, where the use of...
PHOENIX CONTACTs WP 6xxx series web panels Security Vulnerability
PHOENIX CONTACTs WP 6xxx series web panels are a series of web panels from PHOENIX CONTACTs, Germany. A security vulnerability exists in PHOENIX CONTACTs WP 6xxx series web panels prior to version 4.0.10, which originates from an SNMP daemon running with root privileges in the web panels, allowin...
PT-2023-3483 · 1Panel · 1Panel
Name of the Vulnerable Software and Affected Versions: 1Panel versions prior to 1.3.6 Description: The issue is related to command injection when entering the container terminal in 1Panel, an open source Linux server operation and maintenance management panel. An authenticated attacker can craft...
CBOT Chatbot 安全特征问题漏洞
CBOT Chatbot is an AI-powered real-time chat solution from CBOT. A security signature issue vulnerability exists in CBOT Chatbot Core prior to v4.0.3.4, Panel prior to v4.0.3.7, which stems from the use of Cryptographically Weak Pseudo-Random Number Generator PRNG, which allows signature spoofing...
CBOT Chatbot 安全漏洞
CBOT Chatbot is an AI-powered real-time chat solution from CBOT. A security vulnerability exists in CBOT Chatbot Core prior to v4.0.3.4, Panel prior to v4.0.3.7, which stems from a vulnerability that allows bypassing authentication...
PT-2023-16029 · Unknown · Control Id Panel +1
Name of the Vulnerable Software and Affected Versions: Control iD Gerencia Web version 1.30 Control iD Panel affected versions not specified Description: A vulnerability was found in the Web Interface component, where the manipulation of the Nome argument leads to cross-site scripting. The attack...