QwikSec

Security Database

CVE

CWE

Training

CVE Database
/

CVE-2026-41472

Back to search

CVE-2026-41472

Published: Apr 24, 2026

Modified: Apr 27, 2026

PUBLISHED

Description

CyberPanel versions prior to 2.4.4 contain a stored cross-site scripting vulnerability in the AI Scanner dashboard where the POST /api/ai-scanner/callback endpoint lacks authentication and allows unauthenticated attackers to inject malicious JavaScript by overwriting the findings_json field of ScanHistory records. Attackers can inject JavaScript that executes in an administrator's authenticated session when they visit the AI Scanner dashboard, allowing them to issue same-origin requests to plant cron jobs and achieve remote code execution on the server.

VendorProductVersions

usmannasir

cyberpanel

affected
0 - < 2.4.4
unaffected
0a099b1b193946555fbdd387a28486b1521f9961

Weaknesses (CWE)

CWE-79

References

https://itsrez.re/post/cyberpanel-rce
technical-description
exploit

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Start Training

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.

Scan Now