| CVE ID | Title | Vendor | Product | Severity | CVSS Score | Published At | AI Analysis |
|---|---|---|---|---|---|---|---|
| CVE-2025-64511 | MaxKB has SSRF in sandbox | 1Panel-dev | MaxKB | High | 7.4 | 2025-11-13 15:51:54 | Deep Dive |
| CVE-2025-10433 | 1Panel-dev MaxKB debug deserialization | 1Panel-dev | MaxKB | Medium | 6.3 | 2025-09-15 08:02:07 | Deep Dive |
| CVE-2025-54424 | 1Panel Agent Bypasses Certificate Verification Leading to Arbitrary Command Execution | 1Panel-dev | 1Panel | High | 8.1 | 2025-08-01 23:04:38 | Deep Dive |
| CVE-2025-53928 | MaxKB has RCE in MCP call | 1Panel-dev | MaxKB | Medium | 4.6 | 2025-07-17 13:56:03 | Deep Dive |
| CVE-2025-53927 | MaxKB sandbox bypass | 1Panel-dev | MaxKB | Medium | 4.6 | 2025-07-17 13:50:18 | Deep Dive |
| CVE-2025-48950 | MaxKB Python Sandbox Bypass in Function Library | 1Panel-dev | MaxKB | - | - | 2025-06-03 18:16:09 | Deep Dive |
| CVE-2025-4546 | 1Panel-dev MaxKB Knowledge Base Module csv injection | 1Panel-dev | MaxKB | Medium | 4.7 | 2025-05-11 20:00:07 | Deep Dive |
| CVE-2025-32383 | MaxKB has a reverse shell vulnerability in function library | 1Panel-dev | MaxKB | Medium | 4.3 | 2025-04-10 13:07:12 | Deep Dive |
| CVE-2024-56137 | MaxKB RCE vulnerability in function library | 1Panel-dev | MaxKB | Medium | 6.8 | 2025-01-02 14:26:20 | Deep Dive |
| CVE-2024-36111 | KubePi's JWT token validation has a defect | 1Panel-dev | KubePi | Medium | 6.3 | 2024-07-25 13:26:13 | Deep Dive |
| CVE-2024-39911 | 1Panel SQL injection | 1Panel-dev | 1Panel | Critical | 10.0 | 2024-07-18 15:35:16 | Deep Dive |
| CVE-2024-39907 | a sqlinjection in 1Panel | 1Panel-dev | 1Panel | Critical | 9.8 | 2024-07-18 15:31:31 | Deep Dive |
| CVE-2024-34352 | Arbitrary file write vulnerability in 1Panel | 1Panel-dev | 1Panel | Medium | 6.5 | 2024-05-09 14:38:19 | Deep Dive |
| CVE-2024-30257 | 1Panel's password verification is suspected to have a timing attack vulnerability | 1Panel-dev | 1Panel | Low | 3.9 | 2024-04-18 14:56:56 | Deep Dive |
| CVE-2024-27288 | 1Panel open source panel project has an unauthorized vulnerability. | 1Panel-dev | 1Panel | Medium | 6.3 | 2024-03-06 18:23:50 | Deep Dive |
| CVE-2024-24768 | 1Panel set-cookie is missing the Secure keyword | 1Panel-dev | 1Panel | Medium | 6.5 | 2024-02-05 15:07:42 | Deep Dive |
| CVE-2023-39966 | 1Panel arbitrary file write vulnerability exists in the background | 1Panel-dev | 1Panel | High | 7.5 | 2023-08-10 17:46:21 | Deep Dive |
| CVE-2023-39965 | 1Panel Unauthorized access in Backend | 1Panel-dev | 1Panel | Medium | 6.5 | 2023-08-10 17:42:06 | Deep Dive |
| CVE-2023-39964 | 1Panel O&M management panel has a background arbitrary file reading vulnerability | 1Panel-dev | 1Panel | High | 7.5 | 2023-08-10 17:39:12 | Deep Dive |
| CVE-2023-37916 | Leak password hash of any user | 1Panel-dev | KubePi | Medium | 6.5 | 2023-07-21 20:15:12 | Deep Dive |