Approved changes feed: RSS · Atom
cpe:2.3:a:aapanel:aapanel:7.57.0:*:*:*:*:*:*:*
part: a version: 7.57.0 update: *
| Vendor | Aapanel (2c58d342-62d5-5d4c-b34a-1e5a15c9d356) |
|---|---|
| Product | Aapanel (8bd148a4-28ef-5457-8130-510bca750027) |
| Edition | * |
| Language | * |
| Software edition | * |
| Target software | * |
| Target hardware | * |
| Other | * |
| Notes | Imported from purl2cpe mapping |
PURL mappings
| PURL | Source | Last updated |
|---|---|---|
pkg:docker/aapanel/aapanel |
purl2cpe | 2026-06-01 10:11:34.866292 |
pkg:github/aapanel/aapanel |
purl2cpe | 2026-06-01 10:11:34.866293 |
Vulnerability references
| Identifier | cpeApplicability | Submitted | db.gcve.eu details | Rationale |
|---|---|---|---|---|
CVE:CVE-2026-29859 |
vulnerable | 2026-06-03 15:19:23.202447 |
Details available
An arbitrary file upload vulnerability in aaPanel v7.57.0 allows attackers to execute arbitrary code via uploading a crafted file.
Published: 2026-03-18T00:00:00.000Z
Updated: 2026-03-23T15:16:36.471Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2026-29858 |
vulnerable | 2026-06-03 15:19:23.202072 |
Details available
A lack of path validation in aaPanel v7.57.0 allows attackers to execute a local file inclusion (LFI), leadingot sensitive information exposure.
Published: 2026-03-18T00:00:00.000Z
Updated: 2026-03-19T14:24:44.583Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2026-29856 |
vulnerable | 2026-06-03 15:19:23.201617 |
Details available
An issue in the VirtualHost configuration handling/parser component of aaPanel v7.57.0 allows attackers to cause a Regular Expression Denial of Service (ReDoS) via a crafted input.
Published: 2026-03-18T00:00:00.000Z
Updated: 2026-03-19T14:19:23.842Z |
Imported from gcve-enriched-dumps CVE data |
Contribute
You can submit an edit proposal for this CPE entry or suggest a related product/vendor addition using the action button above.