CNNVD-202512-1379 Information

CNNVD ID

CNNVD-202512-1379

Related CVE

CVE-2025-66507

• CNNVD Published: 2025-12-09

Description (Chinese)

1Panel是中国1Panel社区的一个开源的Linux服务器运维管理面板。 1Panel 2.0.13及之前版本存在安全漏洞，该漏洞源于未验证客户端参数，可能导致CAPTCHA绕过和账户接管。

Description (English)

1 Panel is an open-source Linux server management panel for a Panel community in China. 1 Panel 2.0.13 and previous versions contain a security loophole, which stems from the non-validation of client parameters, which may result in CAPTCHA bypassing and account taking.

Hazard Level

Medium

Vulnerability Type

其他

Affected Vendor

1Panel

Published

2025-12-09

Last Modified

2026-02-24

References

https://github.com/1Panel-dev/1Panel/commit/ac43f00273be745f8d04b90b6e2b9c1a40ef7bca https://github.com/1Panel-dev/1Panel/releases/tag/v2.0.14 https://github.com/1Panel-dev/1Panel/security/advisories/GHSA-qmg5-v42x-qqhq

Patch

https://github.com/1Panel-dev/1Panel/releases