6.8.8

DATE	CVE	VULNERABILITY TITLE	RISK
2021-08-02	CVE-2021-37840	Unspecified vulnerability in Aapanel aaPanel through 6.8.12 allows Cross-Site WebSocket Hijacking (CSWH) involving OS commands within WebSocket messages at a ws:// URL for /webssh (the victim must have configured Terminal with at least one host). network low complexity aapanel	8.8

CVE is a registered MITRE Corporation trademark and MITRE's CVE website is the authoritative source of CVE content. CWE is a registered MITRE Corporation trademark and MITRE's CWE website is the authoritative source of CWE content.