cbcvebase.

1Panel-Dev Maxkb vulnerabilities

30 known vulnerabilities affecting 1panel-dev/maxkb.

Total CVEs
30
CISA KEV
0
Public exploits
0
Exploited in wild
0
Severity breakdown
CRITICAL2HIGH10MEDIUM14LOW4

Vulnerabilities

Page 2 of 2
CVE-2025-53927P4MEDIUMCVSS 6.3fixed in 2.0.02025-07-17
CVE-2025-53927 [MEDIUM] CWE-94 CVE-2025-53927: MaxKB is an open-source AI assistant for enterprise. Prior to version 2.0.0, the sandbox design rule MaxKB is an open-source AI assistant for enterprise. Prior to version 2.0.0, the sandbox design rules can be bypassed because MaxKB only restricts the execution permissions of files in a specific directory. Therefore, an attacker can use the `shutil.copy2` method in Python to copy the command they want to execute to the executable directory. This byp
nvd
CVE-2026-45413P4MEDIUMCVSS 6.9fixed in 2.9.12026-05-26
CVE-2026-45413 [MEDIUM] CWE-328 CVE-2026-45413: MaxKB is an open-source AI assistant for enterprise. Prior to 2.9.1, user passwords are stored using MaxKB is an open-source AI assistant for enterprise. Prior to 2.9.1, user passwords are stored using unsalted MD5 hashes, making them trivially crackable via rainbow tables or GPU-accelerated brute force (hashcat). This vulnerability is fixed in 2.9.1.
nvd
CVE-2026-39422P4MEDIUMCVSS 5.4fixed in 2.8.02026-04-14
CVE-2026-39422 [MEDIUM] CWE-79 CVE-2026-39422: MaxKB is an open-source AI assistant for enterprise. Versions 2.7.1 and below contain a Stored Cross MaxKB is an open-source AI assistant for enterprise. Versions 2.7.1 and below contain a Stored Cross-Site Scripting (XSS) vulnerability through the application name or icon fields when creating an application. When a victim visits the public chat interface (/ui/chat/{access_token}), the ChatHeadersMiddleware retrieves the application data and directl
nvd
CVE-2026-39425P4MEDIUMCVSS 5.4fixed in 2.8.02026-04-14
CVE-2026-39425 [MEDIUM] CWE-80 CVE-2026-39425: MaxKB is an open-source AI assistant for enterprise. Versions 2.7.1 and below contain a Stored Cross MaxKB is an open-source AI assistant for enterprise. Versions 2.7.1 and below contain a Stored Cross-Site Scripting (XSS) vulnerability that allows authenticated users to inject arbitrary HTML and JavaScript into the Application prologue (Opening Remarks) field by wrapping malicious payloads in tags. The backend fails to sanitize or encode HTML entit
nvd
CVE-2026-39426P4MEDIUMCVSS 5.4fixed in 2.8.02026-04-14
CVE-2026-39426 [MEDIUM] CWE-79 CVE-2026-39426: MaxKB is an open-source AI assistant for enterprise. Versions 2.7.1 and below contain a Stored Cross MaxKB is an open-source AI assistant for enterprise. Versions 2.7.1 and below contain a Stored Cross-Site Scripting (XSS) vulnerability where the frontend's MdRenderer.vue component parses custom tags from LLM responses or Application Prologue configurations, bypassing standard Markdown sanitization and XSS filtering. The unsanitized HTML content is
nvd
CVE-2026-39423P4MEDIUMCVSS 5.4fixed in 2.8.02026-04-14
CVE-2026-39423 [MEDIUM] CWE-79 CVE-2026-39423: MaxKB is an open-source AI assistant for enterprise. Versions 2.7.1 and below contain an Eval Inject MaxKB is an open-source AI assistant for enterprise. Versions 2.7.1 and below contain an Eval Injection vulnerability in the Markdown rendering engine that allows any user capable of interacting with the AI chat interface to execute arbitrary JavaScript in the browsers of other users, including administrators, resulting in Stored Cross-Site Scripting
nvd
CVE-2026-6106P4LOWCVSS 3.5v2.2.0v2.2.12026-04-11
CVE-2026-6106 [LOW] CWE-79 CVE-2026-6106: A vulnerability was detected in 1Panel-dev MaxKB up to 2.2.1. This vulnerability affects the functio A vulnerability was detected in 1Panel-dev MaxKB up to 2.2.1. This vulnerability affects the function StaticHeadersMiddleware of the file apps/common/middleware/static_headers_middleware.py of the component Public Chat Interface. The manipulation of the argument Name results in cross site scripting. The attack may be launched remotely. The exploit is now
nvd
CVE-2025-15632P4LOWCVSS 3.5v2.4.0v2.4.1+1 more2026-04-13
CVE-2025-15632 [LOW] CWE-79 CVE-2025-15632: A vulnerability has been found in 1Panel-dev MaxKB up to 2.4.2. Impacted is an unknown function of t A vulnerability has been found in 1Panel-dev MaxKB up to 2.4.2. Impacted is an unknown function of the file ui/src/chat.ts of the component MdPreview. Such manipulation leads to cross site scripting. The attack can be executed remotely. The exploit has been disclosed to the public and may be used. Upgrading to version 2.5.0 is recommended to address thi
nvd
CVE-2026-6107P4LOWCVSS 3.5v2.6.0v2.6.12026-04-12
CVE-2026-6107 [LOW] CWE-79 CVE-2026-6107: A flaw has been found in 1Panel-dev MaxKB up to 2.6.1. This issue affects some unknown processing of A flaw has been found in 1Panel-dev MaxKB up to 2.6.1. This issue affects some unknown processing of the file apps/common/middleware/chat_headers_middleware.py of the component ChatHeadersMiddleware. This manipulation of the argument Name causes cross site scripting. Remote exploitation of the attack is possible. Upgrading to version 2.8.0 is capable of a
nvd
CVE-2026-39419P4LOWCVSS 3.1fixed in 2.8.02026-04-14
CVE-2026-39419 [LOW] CWE-74 CVE-2026-39419: MaxKB is an open-source AI assistant for enterprise. In versions 2.7.1 and below, an authenticated u MaxKB is an open-source AI assistant for enterprise. In versions 2.7.1 and below, an authenticated user can bypass sandbox result validation and spoof tool execution results by exploiting Python frame introspection to read the wrapper's UUID from its bytecode constants, then writing a forged result directly to file descriptor 1 (bypassing stdout redirec
nvd
1Panel-Dev Maxkb vulnerabilities | cvebase