Vulnerabilities in 1Panel-dev

52 results

CVE-2024-39907CRITICALa sqlinjection in 1Panel EPSS 29.4%CVE-2024-36111MEDIUMKubePi's JWT token validation has a defectEPSS 8.4%CVE-2023-37477HIGHCommand injection in firewall ip functionality in 1PanelEPSS 5.4%CVE-2024-39911CRITICAL1Panel SQL injectionEPSS 4.6%CVE-2023-36457MEDIUM1Panel vulnerable to command injection when adding container repositoriesEPSS 2.0%CVE-2023-36458MEDIUM1Panel vulnerable to ommand injection when entering the container terminalEPSS 2.0%CVE-2024-34352MEDIUMArbitrary file write vulnerability in 1Panel EPSS 1.3%CVE-2026-6108MEDIUM1Panel-dev MaxKB Model Context Protocol Node base_mcp_node.py execute os command injectionEPSS 1.3%CVE-2025-54424HIGH1Panel Agent Bypasses Certificate Verification Leading to Arbitrary Command ExecutionEPSS 0.9%CVE-2023-39964HIGH1Panel O&M management panel has a background arbitrary file reading vulnerabilityEPSS 0.8%CVE-2024-56137MEDIUMMaxKB RCE vulnerability in function libraryEPSS 0.8%CVE-2023-39966HIGH1Panel arbitrary file write vulnerability exists in the backgroundEPSS 0.7%CVE-2023-37916MEDIUMLeak password hash of any userEPSS 0.7%CVE-2023-37917CRITICALPrivilege Escalation in kubepiEPSS 0.6%CVE-2025-4546MEDIUM1Panel-dev MaxKB Knowledge Base Module csv injectionEPSS 0.5%CVE-2026-39420MEDIUMMaxKB: Sandbox escape via LD_PRELOAD bypassEPSS 0.5%CVE-2024-27288MEDIUM1Panel open source panel project has an unauthorized vulnerability.EPSS 0.5%CVE-2025-53928MEDIUMMaxKB has RCE in MCP callEPSS 0.4%CVE-2025-66507HIGH1Panel – CAPTCHA Bypass via Client-Controlled FlagEPSS 0.4%CVE-2023-39965MEDIUM1Panel Unauthorized access in BackendEPSS 0.4%

← previouspage 1 / 3next →