Home

Description

A lack of path validation in aaPanel v7.57.0 allows attackers to execute a local file inclusion (LFI), leadingot sensitive information exposure.

PUBLISHED Reserved 2026-03-04 | Published 2026-03-18 | Updated 2026-03-19 | Assigner mitre

References

github.com/aapanel/aapanel

github.com/...ulnerability-research/tree/main/CVE-2026-29858

cve.org (CVE-2026-29858)

nvd.nist.gov (CVE-2026-29858)

Download JSON