Improper Error Handling in Ajenti Version 2 Login JSON Request Leads to Server Path Leakage

Improper Error Handling in Ajenti Version 2 Login JSON Request Leads to Server Path Leakage

CVE-2018-1000083 · MEDIUM Severity

AV:N/AC:L/AU:N/C:P/I:N/A:N

Ajenti version version 2 contains a Improper Error Handling vulnerability in Login JSON request that can result in The requisition leaks a path of the server. This attack appear to be exploitable via By sending a malformed JSON, the tool responds with a traceback error that leaks a path of the server.

Learn more about our Cis Benchmark Audit For Server Software.