Known Vulnerabilities for products from Ajenti

Listed below are 11 of the newest known vulnerabilities associated with the vendor "Ajenti".

These CVEs are retrieved based on exact matches on listed vendor information (CPE data) as well as a keyword search to ensure the newest vulnerabilities with no officially listed vendor information are still displayed.

Data on known vulnerable products is also displayed based on information from known CPEs, each product links to its respective vulnerability page.

Known Vulnerabilities

CVE Shortened Description Severity Publish Date Last Modified
CVE-2026-40178 json ajenti.plugin.core defines all necessary core elements to allow Ajenti to run properly. Prior to 0.112, if the 2FA was activa... Not Provided 2026-04-10 2026-04-21
CVE-2026-40177 json ajenti.plugin.core defines all necessary core elements to allow Ajenti to run properly. Prior to 0.112, if the 2FA was activa... Not Provided 2026-04-10 2026-04-21
CVE-2026-35175 json Not Provided 2026-04-06 2026-04-07
CVE-2020-37002 json Not Provided 2026-01-29 2026-05-25
CVE-2019-25066 json A vulnerability has been found in ajenti 2.1.31 and classified as critical. This vulnerability affects unknown code of the co... 8.8 - HIGH 2022-06-09 2022-06-15
CVE-2018-1000126 json Ajenti version 2 contains an Information Disclosure vulnerability in Line 176 of the code source that can result in user and ... 7.5 - HIGH 2018-03-13 2018-04-11
CVE-2018-1000083 json Ajenti version version 2 contains a Improper Error Handling vulnerability in Login JSON request that can result in The requis... 5.3 - MEDIUM 2018-03-13 2018-04-06
CVE-2018-1000082 json Ajenti version version 2 contains a Cross ite Request Forgery (CSRF) vulnerability in the command execution panel of the tool... 8.8 - HIGH 2018-03-13 2018-04-06
CVE-2018-1000081 json Ajenti version version 2 contains a Input Validation vulnerability in ID string on Get-values POST request that can result in... 7.5 - HIGH 2018-03-13 2018-04-06
CVE-2018-1000080 json Ajenti version version 2 contains a Insecure Permissions vulnerability in Plugins download that can result in The download of... 6.5 - MEDIUM 2018-03-13 2019-10-03
CVE-2018-18548 json ajenticp (aka Ajenti Docker control panel) for Ajenti through v1.2.23.13 has XSS via a filename that is mishandled in File Ma... 6.1 - MEDIUM 2018-10-24 2018-12-06
CVE-2014-4301 json Multiple cross-site scripting (XSS) vulnerabilities in the respond_error function in routing.py in Eugene Pankov Ajenti befor... Not Provided 2014-06-18 2026-05-06
CVE-2014-2260 json Cross-site scripting (XSS) vulnerability in plugins/main/content/js/ajenti.coffee in Eugene Pankov Ajenti 1.2.13 allows remot... Not Provided 2014-04-30 2026-05-06

Known software with vulnerabilities from Ajenti

Type Vendor Product Version
ApplicationAjentiAjenti0.3.0
ApplicationAjentiAjenticp0.3.0
© CVE.report 2026 |

Use of this information constitutes acceptance for use in an AS IS condition. There are NO warranties, implied or otherwise, with regard to this information or its use. Any use of this information is at the user's risk. It is the responsibility of user to evaluate the accuracy, completeness or usefulness of any information, opinion, advice or other content. EACH USER WILL BE SOLELY RESPONSIBLE FOR ANY consequences of his or her direct or indirect use of this web site. ALL WARRANTIES OF ANY KIND ARE EXPRESSLY DISCLAIMED. This site will NOT BE LIABLE FOR ANY DIRECT, INDIRECT or any other kind of loss.

CVE, CWE, and OVAL are registred trademarks of The MITRE Corporation and the authoritative source of CVE content is MITRE's CVE web site. This site includes MITRE data granted under the following license.

Free CVE JSON API cve.report/api

CVE.report and Source URL Uptime Status status.cve.report