Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
aapanel aapanel vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2022-48079
Monnai aaPanel host system v1.5 contains an access control issue which allows malicious users to escalate privileges and execute arbitrary code via uploading a crafted PHP file to the virtual host directory of the system.
Mengnai Aapanel Host System 1.5
356
VMScore
CVE-2022-26252
aaPanel v6.8.21 exists to be vulnerable to directory traversal. This vulnerability allows malicious users to obtain the root user private SSH key(id_rsa).
Aapanel Aapanel 6.8.21
605
VMScore
CVE-2021-37840
aaPanel up to and including 6.8.12 allows Cross-Site WebSocket Hijacking (CSWH) involving OS commands within WebSocket messages at a ws:// URL for /webssh (the victim must have configured Terminal with at least one host). Successful exploitation depends on the browser used by a p...
Aapanel Aapanel
578
VMScore
CVE-2020-14950
aaPanel up to and including 6.6.6 allows remote authenticated users to execute arbitrary commands via shell metacharacters in a modified /system?action=ServiceAdmin request (start, stop, or restart) to the setting menu of Sotfware Store.
Aapanel Aapanel
1 Github repository
801
VMScore
CVE-2020-14421
aaPanel up to and including 6.6.6 allows remote authenticated users to execute arbitrary commands via the Script Content box on the Add Cron Job screen.
Aapanel Aapanel
1 Github repository
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2020-17519
open redirect
CVE-2024-21683
cache poisoning
CVE-2021-47524
CVE-2021-47521
CVE-2024-5229
CVE-2021-47560
local
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started