Vulnerabilities > Ajenti > Medium
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2018-10-24 | CVE-2018-18548 | Cross-site Scripting vulnerability in Ajenti Ajenticp ajenticp (aka Ajenti Docker control panel) for Ajenti through v1.2.23.13 has XSS via a filename that is mishandled in File Manager. | 6.1 |
| 2018-03-13 | CVE-2018-1000083 | Path Traversal vulnerability in Ajenti 2 Ajenti version version 2 contains a Improper Error Handling vulnerability in Login JSON request that can result in The requisition leaks a path of the server. | 5.3 |
| 2018-03-13 | CVE-2018-1000080 | Incorrect Permission Assignment for Critical Resource vulnerability in Ajenti 2 Ajenti version version 2 contains a Insecure Permissions vulnerability in Plugins download that can result in The download of any plugins as being a normal user. | 6.5 |