Vulnerabilities > Ajenti > Ajenti > 2
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2018-03-13 | CVE-2018-1000126 | Information Exposure vulnerability in Ajenti 2 Ajenti version 2 contains an Information Disclosure vulnerability in Line 176 of the code source that can result in user and system enumeration as well as data from the /etc/ajenti/config.yml file. | 5.0 |
| 2018-03-13 | CVE-2018-1000083 | Path Traversal vulnerability in Ajenti 2 Ajenti version version 2 contains a Improper Error Handling vulnerability in Login JSON request that can result in The requisition leaks a path of the server. | 5.0 |
| 2018-03-13 | CVE-2018-1000082 | Cross-Site Request Forgery (CSRF) vulnerability in Ajenti 2 Ajenti version version 2 contains a Cross ite Request Forgery (CSRF) vulnerability in the command execution panel of the tool used to manage the server. | 6.8 |
| 2018-03-13 | CVE-2018-1000081 | Improper Input Validation vulnerability in Ajenti 2 Ajenti version version 2 contains a Input Validation vulnerability in ID string on Get-values POST request that can result in Server Crashing. | 5.0 |
| 2018-03-13 | CVE-2018-1000080 | Incorrect Permission Assignment for Critical Resource vulnerability in Ajenti 2 Ajenti version version 2 contains a Insecure Permissions vulnerability in Plugins download that can result in The download of any plugins as being a normal user. | 4.0 |