Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
ajenti ajenti vulnerabilities and exploits
(subscribe to this query)
8.8
CVSSv3
CVE-2019-25066
A vulnerability has been found in ajenti 2.1.31 and classified as critical. This vulnerability affects unknown code of the component API. The manipulation leads to privilege escalation. The attack can be initiated remotely. The exploit has been disclosed to the public and may be ...
Ajenti Ajenti 2.1.31
6.1
CVSSv3
CVE-2018-18548
ajenticp (aka Ajenti Docker control panel) for Ajenti through v1.2.23.13 has XSS via a filename that is mishandled in File Manager.
Ajenti Ajenticp
1 EDB exploit
7.5
CVSSv3
CVE-2018-1000126
Ajenti version 2 contains an Information Disclosure vulnerability in Line 176 of the code source that can result in user and system enumeration as well as data from the /etc/ajenti/config.yml file. This attack appears to be exploitable via network connectivity to the web applicat...
Ajenti Ajenti 2
6.5
CVSSv3
CVE-2018-1000080
Ajenti version version 2 contains a Insecure Permissions vulnerability in Plugins download that can result in The download of any plugins as being a normal user. This attack appear to be exploitable via By knowing how the requisition is made, and sending it as a normal user, the ...
Ajenti Ajenti 2
7.5
CVSSv3
CVE-2018-1000081
Ajenti version version 2 contains a Input Validation vulnerability in ID string on Get-values POST request that can result in Server Crashing. This attack appear to be exploitable via An attacker can freeze te server by sending a giant string to the ID parameter ..
Ajenti Ajenti 2
8.8
CVSSv3
CVE-2018-1000082
Ajenti version version 2 contains a Cross ite Request Forgery (CSRF) vulnerability in the command execution panel of the tool used to manage the server. that can result in Code execution on the server . This attack appear to be exploitable via Being a CSRF, victim interaction is ...
Ajenti Ajenti 2
5.3
CVSSv3
CVE-2018-1000083
Ajenti version version 2 contains a Improper Error Handling vulnerability in Login JSON request that can result in The requisition leaks a path of the server. This attack appear to be exploitable via By sending a malformed JSON, the tool responds with a traceback error that leaks...
Ajenti Ajenti 2
NA
CVE-2014-4301
Multiple cross-site scripting (XSS) vulnerabilities in the respond_error function in routing.py in Eugene Pankov Ajenti prior to 1.2.21.7 allow remote malicious users to inject arbitrary web script or HTML via the PATH_INFO to (1) resources.js or (2) resources.css in ajenti:stati...
Ajenti Ajenti 1.2.10
Ajenti Ajenti 1.2.9
Ajenti Ajenti 1.2.8
Ajenti Ajenti 1.2.7
Ajenti Ajenti 1.2.19
Ajenti Ajenti 1.2.18
Ajenti Ajenti 1.2.17
Ajenti Ajenti 1.2.16
Ajenti Ajenti 1.2.15
Ajenti Ajenti 1.2.2
Ajenti Ajenti 1.2.1
Ajenti Ajenti 1.2.0
Ajenti Ajenti 1.2.20
Ajenti Ajenti 1.2.13
Ajenti Ajenti 1.2.11.2
Ajenti Ajenti 1.2.6
Ajenti Ajenti 1.2.4
Ajenti Ajenti
Ajenti Ajenti 1.2.14
Ajenti Ajenti 1.2.12
Ajenti Ajenti 1.2.5
Ajenti Ajenti 1.2.3
NA
CVE-2014-2260
Cross-site scripting (XSS) vulnerability in plugins/main/content/js/ajenti.coffee in Eugene Pankov Ajenti 1.2.13 allows remote authenticated users to inject arbitrary web script or HTML via the command field in the Cron functionality.
Ajenti Ajenti 1.2.13
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
inject
CVE-2024-34001
CVE-2024-37018
LFI
CVE-2024-1275
CVE-2024-1086
CSRF
CVE-2024-31030
CVE-2024-24919
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started