Vulnerabilidades en 1Panel-dev
52 resultadosCVE-2026-6107MEDIUM1Panel-dev MaxKB ChatHeadersMiddleware chat_headers_middleware.py cross site scriptingEPSS 0.2%CVE-2026-42337MEDIUMMaxKB: Broken Access Control in MaxKB OSS URL Fetch APIEPSS 0.2%CVE-2026-45412MEDIUMMaxKB: Unauthenticated SSRF via Workflow Template ImportEPSS 0.2%CVE-2026-39418MEDIUMMaxKB: SSRF via sandbox network hook bypassEPSS 0.2%CVE-2025-66508MEDIUM1Panel IP Access Control Bypass via Untrusted X-Forwarded-For HeadersEPSS 0.2%CVE-2026-39426MEDIUMMaxKB: Stored XSS via Unsanitized iframe_render ParsingEPSS 0.2%CVE-2026-42336MEDIUMMaxKB: SSRF Bypass via DNS Rebinding in MaxKB OSS URL FetchEPSS 0.2%CVE-2026-39425MEDIUMMaxKB: Stored XSS via Unsanitized html_rander Tags in Markdown RenderingEPSS 0.2%CVE-2025-64511HIGHMaxKB has SSRF in sandboxEPSS 0.2%CVE-2026-39423MEDIUMStored XSS via Eval Injection in EchartsRander ComponentEPSS 0.2%CVE-2025-64703MEDIUMMaxKB has Information Leak in sandboxEPSS 0.2%CVE-2026-45413MEDIUMMaxKB: Unsalted MD5 Password HashingEPSS 0.1%