Fit2Cloud 1Panel vulnerabilities
21 known vulnerabilities affecting fit2cloud/1panel.
Total CVEs
21
CISA KEV
0
Public exploits
1
Exploited in wild
1
Severity breakdown
CRITICAL5HIGH11MEDIUM4LOW1
Vulnerabilities
Page 1 of 2
CVE-2023-39964P2HIGHCVSS 7.5Exploitedv1.4.32023-08-10
CVE-2023-39964 [HIGH] CWE-22 CVE-2023-39964: 1Panel is an open source Linux server operation and maintenance management panel. In version 1.4.3,
1Panel is an open source Linux server operation and maintenance management panel. In version 1.4.3, arbitrary file reads allow an attacker to read arbitrary important configuration files on the server. In the `api/v1/file.go` file, there is a function called `LoadFromFile`, which directly reads the file by obtaining the requested path `parameter[path]`.
nvd
CVE-2024-39907P1CRITICALCVSS 9.8PoC≥ 1.10.9-lts, < 1.10.12-lts2024-07-18
CVE-2024-39907 [CRITICAL] CWE-89 CVE-2024-39907: 1Panel is a web-based linux server management control panel. There are many sql injections in the pr
1Panel is a web-based linux server management control panel. There are many sql injections in the project, and some of them are not well filtered, leading to arbitrary file writes, and ultimately leading to RCEs. These sql injections have been resolved in version 1.10.12-tls. Users are advised to upgrade. There are no known workarounds for these is
nvd
CVE-2025-56413P2HIGHCVSS 8.8v2.0.82025-09-10
CVE-2025-56413 [HIGH] CWE-78 CVE-2025-56413: OS Command injection vulnerability in function OperateSSH in 1panel 2.0.8 allowing attackers to exec
OS Command injection vulnerability in function OperateSSH in 1panel 2.0.8 allowing attackers to execute arbitrary commands via the operation parameter to the /api/v2/hosts/ssh/operate endpoint.
nvd
CVE-2023-37477P2HIGHCVSS 8.8fixed in 1.4.32023-07-18
CVE-2023-37477 [HIGH] CWE-78 CVE-2023-37477: 1Panel is an open source Linux server operation and maintenance management panel. An OS command inje
1Panel is an open source Linux server operation and maintenance management panel. An OS command injection vulnerability exists in 1Panel firewall functionality. A specially-crafted HTTP request can lead to arbitrary command execution. An attacker can make an authenticated HTTP request to trigger this vulnerability. 1Panel firewall functionality `/hosts
nvd
CVE-2025-54424P2CRITICALCVSS 9.8fixed in 2.0.62025-08-01
CVE-2025-54424 [CRITICAL] CWE-77 CVE-2025-54424: 1Panel is a web interface and MCP Server that manages websites, files, containers, databases, and LL
1Panel is a web interface and MCP Server that manages websites, files, containers, databases, and LLMs on a Linux server. In versions 2.0.5 and below, the HTTPS protocol used for communication between the Core and Agent endpoints has incomplete certificate verification during certificate validation, leading to unauthorized interface access. Due to
nvd
CVE-2024-39911P2CRITICALCVSS 9.8≥ 1.10.10-lts, < 1.10.12-lts2024-07-18
CVE-2024-39911 [CRITICAL] CWE-89 CVE-2024-39911: 1Panel is a web-based linux server management control panel. 1Panel contains an unspecified sql inje
1Panel is a web-based linux server management control panel. 1Panel contains an unspecified sql injection via User-Agent handling. This issue has been addressed in version 1.10.12-lts. Users are advised to upgrade. There are no known workarounds for this vulnerability.
nvd
CVE-2024-2352P2CRITICALCVSS 9.8fixed in 1.10.2-ltsv1.10.1-lts2024-03-10
CVE-2024-2352 [CRITICAL] CWE-77 CVE-2024-2352: A vulnerability, which was classified as critical, has been found in 1Panel up to 1.10.1-lts. Affect
A vulnerability, which was classified as critical, has been found in 1Panel up to 1.10.1-lts. Affected by this issue is the function baseApi.UpdateDeviceSwap of the file /api/v1/toolbox/device/update/swap. The manipulation of the argument Path with the input 123123123\nopen -a Calculator leads to command injection. The attack may be launched remotely
nvd
CVE-2023-39966P3CRITICALCVSS 9.8v1.4.32023-08-10
CVE-2023-39966 [CRITICAL] CWE-862 CVE-2023-39966: 1Panel is an open source Linux server operation and maintenance management panel. In version 1.4.3,
1Panel is an open source Linux server operation and maintenance management panel. In version 1.4.3, an arbitrary file write vulnerability could lead to direct control of the server. In the `api/v1/file.go` file, there is a function called `SaveContentthat,It `recieves JSON data sent by users in the form of a POST request. And the lack of parameter
nvd
CVE-2023-36458P3HIGHCVSS 8.8fixed in 1.3.62023-07-05
CVE-2023-36458 [HIGH] CWE-77 CVE-2023-36458: 1Panel is an open source Linux server operation and maintenance management panel. Prior to version 1
1Panel is an open source Linux server operation and maintenance management panel. Prior to version 1.3.6, an authenticated attacker can craft a malicious payloads to achieve command injection when entering the container terminal. The vulnerability has been fixed in v1.3.6.
nvd
CVE-2023-36457P3HIGHCVSS 8.8fixed in 1.3.62023-07-05
CVE-2023-36457 [HIGH] CWE-77 CVE-2023-36457: 1Panel is an open source Linux server operation and maintenance management panel. Prior to version 1
1Panel is an open source Linux server operation and maintenance management panel. Prior to version 1.3.6, an authenticated attacker can craft a malicious payload to achieve command injection when adding container repositories. The vulnerability has been fixed in v1.3.6.
nvd
CVE-2025-66507P3HIGHCVSS 7.5fixed in 2.0.142025-12-09
CVE-2025-66507 [HIGH] CWE-290 CVE-2025-66507: 1Panel is an open-source, web-based control panel for Linux server management. Versions 2.0.13 and b
1Panel is an open-source, web-based control panel for Linux server management. Versions 2.0.13 and below allow an unauthenticated attacker to disable CAPTCHA verification by abusing a client-controlled parameter. Because the server previously trusted this value without proper validation, CAPTCHA protections can be bypassed, enabling automated login at
nvd
CVE-2024-34352P3HIGHCVSS 7.5fixed in 1.10.3-lts2024-05-14
CVE-2024-34352 [HIGH] CWE-77 CVE-2024-34352: 1Panel is an open source Linux server operation and maintenance management panel. Prior to v1.10.3-
1Panel is an open source Linux server operation and maintenance management panel. Prior to v1.10.3-lts, there are many command injections in the project, and some of them are not well filtered, leading to arbitrary file writes, and ultimately leading to RCEs. The mirror configuration write symbol `>` can be used to achieve arbitrary file writing. This v
nvd
CVE-2026-23525P3HIGHCVSS 8.4fixed in 1.10.34≥ 2.0.0, < 2.0.172026-01-18
CVE-2026-23525 [HIGH] CWE-79 CVE-2026-23525: 1Panel is an open-source, web-based control panel for Linux server management. A stored Cross-Site S
1Panel is an open-source, web-based control panel for Linux server management. A stored Cross-Site Scripting (XSS) vulnerability exists in the 1Panel App Store when viewing application details. Malicious scripts can execute in the context of the user’s browser, potentially compromising session data or sensitive system interfaces. All versions of 1Panel
nvd
CVE-2025-66508P3MEDIUMCVSS 6.5fixed in 2.0.142025-12-09
CVE-2025-66508 [MEDIUM] CWE-290 CVE-2025-66508: 1Panel is an open-source, web-based control panel for Linux server management. Versions 2.0.14 and b
1Panel is an open-source, web-based control panel for Linux server management. Versions 2.0.14 and below use Gin's default configuration which trusts all IP addresses as proxies (TrustedProxies = 0.0.0.0/0), allowing any client to spoof the X-Forwarded-For header. Since all IP-based access controls (AllowIPs, API whitelists, localhost-only checks) r
nvd
CVE-2024-24768P3HIGHCVSS 7.5v1.9.52024-02-05
CVE-2024-24768 [HIGH] CWE-315 CVE-2024-24768: 1Panel is an open source Linux server operation and maintenance management panel. The HTTPS cookie t
1Panel is an open source Linux server operation and maintenance management panel. The HTTPS cookie that comes with the panel does not have the Secure keyword, which may cause the cookie to be sent in plain text if accessed using HTTP. This issue has been patched in version 1.9.6.
nvd
CVE-2025-34429P4HIGHCVSS 7.1≥ 1.10.33-lts, ≤ 2.0.152025-12-10
CVE-2025-34429 [HIGH] CWE-352 CVE-2025-34429: 1Panel versions 1.10.33 - 2.0.15 contain a cross-site request forgery (CSRF) vulnerability in the we
1Panel versions 1.10.33 - 2.0.15 contain a cross-site request forgery (CSRF) vulnerability in the web port configuration functionality. The port-change endpoint lacks CSRF defenses such as anti-CSRF tokens or Origin/Referer validation. An attacker can craft a malicious webpage that submits a port-change request; when a victim visits it while authentic
nvd
CVE-2025-34410P4HIGHCVSS 7.1≥ 1.10.33-lts, ≤ 2.0.152025-12-10
CVE-2025-34410 [HIGH] CWE-352 CVE-2025-34410: 1Panel versions 1.10.33 - 2.0.15 contain a cross-site request forgery (CSRF) vulnerability in the Ch
1Panel versions 1.10.33 - 2.0.15 contain a cross-site request forgery (CSRF) vulnerability in the Change Username functionality available from the settings panel (/settings/panel). The endpoint does not implement CSRF protections such as anti-CSRF tokens or Origin/Referer validation. An attacker can craft a malicious webpage that submits a username-ch
nvd
CVE-2024-30257P4MEDIUMCVSS 5.9fixed in 1.10.3-lts2024-04-18
CVE-2024-30257 [MEDIUM] CWE-203 CVE-2024-30257: 1Panel is an open source Linux server operation and maintenance management panel. The password verif
1Panel is an open source Linux server operation and maintenance management panel. The password verification in the source code uses the != symbol instead hmac.Equal. This may lead to a timing attack vulnerability. This vulnerability is fixed in 1.10.3-lts.
nvd
CVE-2023-39965P4MEDIUMCVSS 4.3v1.4.32023-08-10
CVE-2023-39965 [MEDIUM] CWE-863 CVE-2023-39965: 1Panel is an open source Linux server operation and maintenance management panel. In version 1.4.3,
1Panel is an open source Linux server operation and maintenance management panel. In version 1.4.3, authenticated attackers can download arbitrary files through the API interface. This code has unauthorized access. Attackers can freely download the file content on the target system. This may cause a large amount of information leakage. Version 1.5.0
nvd
CVE-2025-34430P4MEDIUMCVSS 4.3≥ 1.10.33-lts, ≤ 2.0.152025-12-10
CVE-2025-34430 [MEDIUM] CWE-352 CVE-2025-34430: 1Panel versions 1.10.33 through 2.0.15 contain a cross-site request forgery (CSRF) vulnerability in
1Panel versions 1.10.33 through 2.0.15 contain a cross-site request forgery (CSRF) vulnerability in the panel name management functionality. The affected endpoint does not implement CSRF defenses such as anti-CSRF tokens or Origin/Referer validation. An attacker can craft a malicious webpage that submits a panel-name change request; if a victim visit
nvd
1 / 2Next →