VYPR

bPanel

by BPanel

CVEs (1)

  • CVE-2020-28657CriMar 2, 2021
    risk 0.64cvss 9.8epss 0.02

    In bPanel 2.0, the administrative ajax endpoints (aka ajax/aj_*.php) are accessible without authentication and allow SQL injections, which could lead to platform compromise.