📦 Powerpanel
by Cyberpower
🔍 What is Powerpanel?
Description coming soon...
🛡️ Security Overview
Click on a severity to filter vulnerabilities
⚠️ Known Vulnerabilities
This vulnerability involves hard-coded credentials for the CyberPower PowerPanel test server present in production code. Attackers could use these credentials to gain unauthorized access to testing or...
CyberPower PowerPanel Business application contains a hard-coded JWT signing key, allowing attackers to forge authentication tokens and bypass security controls. This affects organizations using Cyber...
This vulnerability allows unauthenticated remote attackers to access PDNU REST APIs in CyberPower PowerPanel Enterprise, potentially leading to application compromise. It affects versions prior to 2.8...
This CVE-2023-25133 is an improper privilege management vulnerability in PowerPanel Business software that allows remote attackers to execute operating system commands via unspecified vectors. It affe...
This vulnerability allows remote attackers to log into PowerPanel Business management servers using the default 'admin' password that is never changed during installation or first login. Affected orga...
CVE-2024-31410 allows attackers to impersonate any client in CyberPower PowerPanel management systems due to hard-coded cryptographic keys in device certificates. This enables malicious data injection...
An unauthenticated SQL injection vulnerability in CyberPower PowerPanel Enterprise allows remote attackers to execute arbitrary SQL commands via the 'query_contract_result' function. This can lead to ...
An unauthenticated SQL injection vulnerability in CyberPower PowerPanel Enterprise allows remote attackers to execute arbitrary SQL commands and leak sensitive information. This affects PowerPanel Ent...
This vulnerability in CyberPower PowerPanel Business for Windows exposes the encryption key for stored passwords within the application code, allowing attackers to decrypt and recover these passwords....