📦 Ispconfig

Name: Ispconfig
Author: Ispconfig

by Ispconfig

🔍 What is Ispconfig?

Description coming soon...

🛡️ Security Overview

Click on a severity to filter vulnerabilities

⚠️ Known Vulnerabilities

CVE-2021-3021

CRITICAL CVSS 9.8 Jan 5, 2021

CVE-2021-3021 is a SQL injection vulnerability in ISPConfig web hosting control panel that allows attackers to execute arbitrary SQL commands. This affects all ISPConfig installations before version 3...

CVE-2020-9398

CRITICAL CVSS 9.8 Feb 25, 2020

This vulnerability allows SQL injection attacks in ISPConfig control panels where the undocumented 'reverse_proxy_panel_allowed=sites' option has been manually enabled. Attackers can execute arbitrary...

CVE-2012-2087

CRITICAL CVSS 9.8 Jan 23, 2020

This vulnerability in ISPConfig 3.0.4.3 allows authenticated users with 'Add new Webdav user' permissions to execute chmod and chown commands on the entire server through the client interface. This af...

CVE-2023-46818

HIGH CVSS 7.2 Oct 27, 2023

This vulnerability allows authenticated ISPConfig administrators to inject arbitrary PHP code through the language file editor when the admin_allow_langedit setting is enabled. This can lead to remote...