Monnai aaPanel host system v1.5 contains an access control issue which allows attackers to escalate privileges and execute arbitrary code via uploading a crafted PHP file to the virtual host directory of the system.
Name | Vendor | Start Version | End Version |
---|---|---|---|
Aapanel_host_system | Mengnai | 1.5 (including) | 1.5 (including) |