| Title | 1panel 1panel v1.10.1-lts Command injection |
|---|
| Description | Check the CheckIllegal code to directly judge the key characters.
This waf that prevent command injection are at risk of being bypassed.
According to github pr description. |
|---|
| Source | ⚠️ https://github.com/1Panel-dev/1Panel/pull/4131 |
|---|
| User | linyz-tel (UID 44909) |
|---|
| Submission | 03/09/2024 04:13 (2 years ago) |
|---|
| Moderation | 03/09/2024 07:59 (4 hours later) |
|---|
| Status | Accepted |
|---|
| VulDB entry | 256304 [1Panel up to 1.10.1-lts swap baseApi.UpdateDeviceSwap Path command injection] |
|---|
| Points | 15 |
|---|