| Titre | 1panel 1panel v1.10.1-lts Command injection |
|---|
| Description | Check the CheckIllegal code to directly judge the key characters.
This waf that prevent command injection are at risk of being bypassed.
According to github pr description. |
|---|
| La source | ⚠️ https://github.com/1Panel-dev/1Panel/pull/4131 |
|---|
| Utilisateur | linyz-tel (UID 44909) |
|---|
| Soumission | 09/03/2024 04:13 (il y a 2 ans) |
|---|
| Modérer | 09/03/2024 07:59 (4 hours later) |
|---|
| Statut | Accepté |
|---|
| Entrée VulDB | 256304 [1Panel jusqu’à 1.10.1-lts swap baseApi.UpdateDeviceSwap Path élévation de privilèges] |
|---|
| Points | 15 |
|---|