Prey

**Name of the Vulnerable Software and Affected Versions** OpenGamePanel OGP-Agent-Linux versions through 2021-08-14 **Description** An issue was discovered in OpenGamePanel OGP-Agent-Linux where the file `$HOME/OGP/Cfg/Config.pm` contains the root password in cleartext. **Recommendations** For OpenGamePanel OGP-Agent-Linux versions through 2021-08-14, consider removing or securing the root password stored in the `$HOME/OGP/Cfg/Config.pm` file to prevent unauthorized access. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** OpenGamePanel OGP-Agent-Linux versions through 2021-08-14 **Description** An issue was discovered that allows an authenticated attacker to inject OS commands. This can be achieved by starting a Counter-Strike server and using the map field to enter a Bash command. **Recommendations** For OpenGamePanel OGP-Agent-Linux versions through 2021-08-14, consider restricting access to the map field when starting a Counter-Strike server to minimize the risk of OS command injection until a patch is available. At the moment, there is no information about a newer version that contains a fix for this vulnerability.