Muhammad Aizat

**Name of the Vulnerable Software and Affected Versions** MGT-COMMERCE GmbH CloudPanel versions 2.0.0 through 2.4.2 **Description** An Improper Authorization (Access Control Misconfiguration) issue allows low-privilege users to bypass access controls, gaining unauthorized access to sensitive configuration files and administrative functionality. This enables attackers to escalate privileges. **Recommendations** For versions 2.0.0 through 2.4.2, update to a version that fixes the Improper Authorization issue to prevent low-privilege users from bypassing access controls. As a temporary workaround, consider restricting access to sensitive configuration files and administrative functionality until a patch is available.

**Name of the Vulnerable Software and Affected Versions** Mgt-commerce CloudPanel versions 2.0.0 through 2.4.0 **Description** A Directory Traversal issue allows a remote attacker to obtain sensitive information and execute arbitrary code via the `service` parameter of the `load-logfiles` function. **Recommendations** For versions 2.0.0 through 2.4.0, consider disabling the `load-logfiles` function until a patch is available to prevent exploitation. Restrict access to sensitive information and limit the execution of arbitrary code by implementing additional security measures. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** MGT CloudPanel versions 2.0.0 through 2.3.2 **Description** The issue allows the lowest privilege user to achieve OS command injection by changing file ownership and changing file permissions to 4755. This is related to the File-Manager component in MGT CloudPanel. **Recommendations** For versions 2.0.0 through 2.3.2, consider restricting file ownership changes and permission modifications to prevent OS command injection until a patch is available. As a temporary workaround, restrict access to the File-Manager component to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** CloudPanel versions 2.0.0 through 2.3.0 CloudPanel version 2.3.0 **Description** The issue is related to insufficient access control in the File Manager component of CloudPanel, specifically when handling `clp-fm` cookie files without verifying their authenticity and integrity. This can allow a remote attacker to gain unauthorized access to protected information and elevate their privileges. **Recommendations** For CloudPanel versions 2.0.0 through 2.3.0, update to version 2.3.1 or later to resolve the issue. As a temporary workaround, consider restricting access to the File Manager component until a patch is applied.