Submit #678237: Guangdong Baota Safety Technology Co., Ltd. Baota Linux Panel <= 11.1 SQL Injectioninfo

TitleGuangdong Baota Safety Technology Co., Ltd. Baota Linux Panel <= 11.1 SQL Injection
DescriptionThe Baota Linux panel backend is vulnerable to SQL injection attacks when obtaining database access permissions. Product Source:https://github.com/aaPanel/BaoTa User Manual:http://docs.bt.cn Installation command: Centos:yum install -y wget && wget -O install.sh http://download.bt.cn/install/install_6.0.sh && sh install.sh Ubuntu/Debian:wget -O install.sh http://download.bt.cn/install/install-ubuntu_6.0.sh && sudo bash install.sh
Source⚠️ https://github.com/coolcj-stack/BaoTa-Panel-Backstage-SQL-injection-vulnerability/blob/main/README.md
User
 BlackSpdier (UID 89912)
Submission10/19/2025 11:43 (8 months ago)
Moderation11/08/2025 08:19 (20 days later)
StatusAccepted
VulDB entry331632 [aaPanel BaoTa up to 11.2.x Backend database?action=GetDatabaseAccess Name sql injection]
Points20

PreviousOverviewNext

Want to stay up to date on a daily basis?

Enable the mail alert feature now!