PT-2018-14673 · Pagoda · Pagoda Linux Panel

Published

2018-10-30

Updated

2018-12-11

CVE-2018-18825

CVSS v3.1

6.1

Medium

Vector

AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N

Name of the Vulnerable Software and Affected Versions Pagoda Linux panel version 6.0

Description The issue concerns a cross-site scripting (XSS) problem. It occurs when a crafted verification code associated with an invalid account login is mishandled during the rendering of the login log.

Recommendations For Pagoda Linux panel version 6.0, update to a version that includes a fix for this issue, as no specific workaround is provided in the available information.

Fix

XSS

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-79

Related Identifiers

CVE-2018-18825

Affected Products

Pagoda Linux Panel

PT-2018-14673 · Pagoda · Pagoda Linux Panel

CVE-2018-18825

Weakness Enumeration

Related Identifiers

Affected Products

References · 3