{"id":"CVE-2018-1000126","details":"Ajenti version 2 contains an Information Disclosure vulnerability in Line 176 of the code source that can result in user and system enumeration as well as data from the /etc/ajenti/config.yml file. This attack appears to be exploitable via network connectivity to the web application.","aliases":["PYSEC-2018-113"],"modified":"2026-03-14T09:25:39.385816Z","published":"2018-03-13T21:29:00.430Z","references":[{"type":"EVIDENCE","url":"https://medium.com/stolabs/security-issues-on-ajenti-d2b7526eaeee"}],"affected":[{"database_specific":{"source":"https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2018-1000126.json","unresolved_ranges":[{"events":[{"introduced":"0"},{"last_affected":"2"}]}]}}],"schema_version":"1.7.5","severity":[{"type":"CVSS_V3","score":"CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N"}]}