Home/Product/ajenti
Product

ajenti

13 known vulnerabilities across versions
Vulnerabilities are listed by affected version. Select any CVE for the full briefing and its intelligence graph.
CVE-2026-40178
< 0.112
ajenti.plugin.core defines all necessary core elements to allow Ajenti to run properly. Prior to 0.112, if the 2FA was activated,
5.9MEDIUM
 CVE-2026-40177
< 0.112
ajenti.plugin.core defines all necessary core elements to allow Ajenti to run properly. Prior to 0.112, if the 2FA was activated,
7.5HIGH
 CVE-2026-35175
< 2.2.15
Ajenti is a Linux and BSD modular server admin panel. Prior to 2.2.15, an authenticated user (using the auth_users plugin authenti
6.5MEDIUM
 CVE-2026-27975
< 2.2.13
Ajenti is a Linux and BSD modular server admin panel. Prior to version 2.2.13, an unauthenticated user could gain access to a serv
9.8CRITICAL
 CVE-2019-25066
all versions
A vulnerability has been found in ajenti 2.1.31 and classified as critical. This vulnerability affects unknown code of the compone
6.3MEDIUM
 CVE-2018-18548
<= 1.2.23.13
ajenticp (aka Ajenti Docker control panel) for Ajenti through v1.2.23.13 has XSS via a filename that is mishandled in File Manager
6.1MEDIUM
 CVE-2018-1000126
all versions
Ajenti version 2 contains an Information Disclosure vulnerability in Line 176 of the code source that can result in user and syste
7.5HIGH
 CVE-2018-1000083
all versions
Ajenti version 2 contains a Improper Error Handling vulnerability in Login JSON request that can result in The requisition
5.3MEDIUM
 CVE-2018-1000082
all versions
Ajenti version 2 contains a Cross ite Request Forgery (CSRF) vulnerability in the command execution panel of the tool used
8.8HIGH
 CVE-2018-1000081
all versions
Ajenti version 2 contains a Input Validation vulnerability in ID string on Get-values POST request that can result in Serv
7.5HIGH
 CVE-2018-1000080
all versions
Ajenti version 2 contains a Insecure Permissions vulnerability in Plugins download that can result in The download of any
6.5MEDIUM
 CVE-2014-4301
<= 1.2.21
Multiple cross-site scripting (XSS) vulnerabilities in the respond_error function in routing.py in Eugene Pankov Ajenti before 1.2
 CVE-2014-2260
all versions
Cross-site scripting (XSS) vulnerability in plugins/main/content/js/ajenti.coffee in Eugene Pankov Ajenti 1.2.13 allows remote aut
SOC and Response
CVE triage
Stack monitoring
Am I affected
IOC triage
KEV catalog
Daily brief
Change tracking
Detection Engineering
Coverage workspace
Detection coverage
Coverage check
Telemetry ceiling
SIEM query builder
Sigma rules
SIEM rules
YARA rules
Network rules
D3FEND
Threat Hunting
Threat actors
ATT&CK techniques
Attack paths
Indicators
Atomic tests
Red Team and Pentest
Exploitability triage
Recon pack
Attack paths
CAPEC patterns
Adversary emulation
Compliance and GRC
Framework mapping
Control assessment
Audit view
Coverage report
Atlas Search Threat actors Techniques Tools & malware CWE CAPEC KEV catalog Package vulns
About All capabilities Pricing API docs Live status Privacy policy Terms of service
threatengine.sh