Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
ajenti.plugin.core has a race conditions in 2FA
Vulnerability Description
ajenti.plugin.core defines all necessary core elements to allow Ajenti to run properly. Prior to 0.112, if the 2FA was activated, it was possible during a short moment after the authentication of an user to bypass its authentication. This vulnerability is fixed in 0.112.
CVSS Information
N/A
Vulnerability Type
认证机制不恰当
Vulnerability Title
ajenti 竞争条件问题漏洞
Vulnerability Description
ajenti是ajenti开源的一个 Linux 和 BSD 模块化服务器管理面板。 Ajenti 0.112之前版本存在竞争条件问题漏洞,该漏洞源于用户身份验证后的短时间内可能绕过其身份验证。
CVSS Information
N/A
Vulnerability Type
N/A