Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
Ajenti version version 2 contains a Cross ite Request Forgery (CSRF) vulnerability in the command execution panel of the tool used to manage the server. that can result in Code execution on the server . This attack appear to be exploitable via Being a CSRF, victim interaction is needed, when the victim access the infected trigger of the CSRF any code that match the victim privledges on the server can be executed..
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
Ajenti 跨站请求伪造漏洞
Vulnerability Description
Ajenti是白俄罗斯软件开发者Eugene Pankov所研发的一套基于Web的开源服务器管理系统。该系统附带多种预制插件,用于配置和监控服务器软件和服务,如Apache、计划任务(Cron)等。 Ajenti 2版本中用于管理服务器工具的命令执行面板存在跨站请求伪造漏洞。远程攻击者可利用该漏洞在服务器上执行代码。
CVSS Information
N/A
Vulnerability Type
N/A