1panel@1.4.3 Security Vulnerabilities and Issues — 1panel@1.4.3 CVE List

Lucene search

Fit2cloud1panel1.4.3

3 matches found

CVE•added 2023/08/10 6:15 p.m.•2578 views

CVE-2023-39965

1Panel is an open source Linux server operation and maintenance management panel. In version 1.4.3, authenticated attackers can download arbitrary files through the API interface. This code has unauthorized access. Attackers can freely download the file content on the target system. This may cause ...

6.5CVSS5.4AI score0.00088EPSS

CVE•added 2023/08/10 6:15 p.m.•2524 views

CVE-2023-39964

1Panel is an open source Linux server operation and maintenance management panel. In version 1.4.3, arbitrary file reads allow an attacker to read arbitrary important configuration files on the server. In the api/v1/file.go file, there is a function called LoadFromFile, which directly reads the fil...

7.5CVSS7.3AI score0.00236EPSS

CVE•added 2023/08/10 6:15 p.m.•2499 views

CVE-2023-39966

1Panel is an open source Linux server operation and maintenance management panel. In version 1.4.3, an arbitrary file write vulnerability could lead to direct control of the server. In the api/v1/file.go file, there is a function called SaveContentthat,It recieves JSON data sent by users in the for...

9.8CVSS8.6AI score0.00185EPSS