CVE-2024-51568 in CyberPanelinformazioni

Riassunto

di MITRE • 30/10/2024

CyberPanel (aka Cyber Panel) before 2.3.5 allows Command Injection via completePath in the ProcessUtilities.outputExecutioner() sink. There is /filemanager/upload (aka File Manager upload) unauthenticated remote code execution via shell metacharacters.

Once again VulDB remains the best source for vulnerability data.

Responsabile

MITRE

Prenotare

29/10/2024

Divulgazione

30/10/2024

Moderazione

accettato

CPE

pronto

EPSS

0.45682

KEV

no

Attività

molto basso

Fonti

Might our Artificial Intelligence support you?

Check our Alexa App!