CVE-2018-1000081
- EPSS 1.16%
- Veröffentlicht 13.03.2018 15:29:00
- Zuletzt bearbeitet 21.11.2024 03:39:35
Ajenti version version 2 contains a Input Validation vulnerability in ID string on Get-values POST request that can result in Server Crashing. This attack appear to be exploitable via An attacker can freeze te server by sending a giant string to the ...
CVE-2018-1000082
- EPSS 1.25%
- Veröffentlicht 13.03.2018 15:29:00
- Zuletzt bearbeitet 21.11.2024 03:39:36
Ajenti version version 2 contains a Cross ite Request Forgery (CSRF) vulnerability in the command execution panel of the tool used to manage the server. that can result in Code execution on the server . This attack appear to be exploitable via Being ...
CVE-2014-4301
- EPSS 2.28%
- Veröffentlicht 18.06.2014 14:55:13
- Zuletzt bearbeitet 06.05.2026 22:30:45
Multiple cross-site scripting (XSS) vulnerabilities in the respond_error function in routing.py in Eugene Pankov Ajenti before 1.2.21.7 allow remote attackers to inject arbitrary web script or HTML via the PATH_INFO to (1) resources.js or (2) resourc...
CVE-2014-2260
- EPSS 1.49%
- Veröffentlicht 30.04.2014 23:58:26
- Zuletzt bearbeitet 06.05.2026 22:30:45
Cross-site scripting (XSS) vulnerability in plugins/main/content/js/ajenti.coffee in Eugene Pankov Ajenti 1.2.13 allows remote authenticated users to inject arbitrary web script or HTML via the command field in the Cron functionality.