Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

admintwentytwenty — Vulnerabilities & Security Advisories 6

Browse all 6 CVE security advisories affecting admintwentytwenty. AI-powered Chinese analysis, POCs, and references for each vulnerability.

AdminTwentyTwenty is a web administration panel primarily used for managing server infrastructure and web applications. Historically, it has been associated with multiple remote code execution (RCE) vulnerabilities, cross-site scripting (XSS), and privilege escalation flaws. The software's six recorded CVEs highlight consistent security weaknesses, particularly in input validation and access control. While no major public incidents have been documented, the pattern of vulnerabilities suggests potential for significant exploitation if deployed without hardening. Its core functionality as an administrative tool makes it an attractive target for attackers seeking system compromise.

Top products by admintwentytwenty: UiPress lite | Effortless custom dashboards, admin themes and pages
CVE IDTitleCVSSSeverityPublished
CVE-2026-2294 UiPress lite | Effortless custom dashboards, admin themes and pages <= 3.5.09 - Missing Authorization to Authenticated (Subscriber+) Plugin Settings Update — UiPress lite | Effortless custom dashboards, admin themes and pagesCWE-285 4.3 Medium2026-03-21
CVE-2025-10938 UiPress lite <= 3.5.08 - Missing Authorization to Authenticated (Subscriber+) Sensitive Information Exposure — UiPress lite | Effortless custom dashboards, admin themes and pagesCWE-862 6.5 Medium2025-11-21
CVE-2025-11003 UiPress lite <= 3.5.08 - Missing Authorization to Authenticated (Subscriber+) Stored Cross-Site Scripting — UiPress lite | Effortless custom dashboards, admin themes and pagesCWE-862 6.4 Medium2025-11-21
CVE-2025-11815 UiPress lite | Effortless custom dashboards, admin themes and pages <= 3.5.08 - Missing Authorization to Authenticated (Subscriber+) Plugin Settings Update — UiPress lite | Effortless custom dashboards, admin themes and pagesCWE-285 4.3 Medium2025-11-21
CVE-2025-3053 UiPress lite | Effortless custom dashboards, admin themes and pages <= 3.5.07 - Authenticated (Subscriber+) Remote Code Execution — UiPress lite | Effortless custom dashboards, admin themes and pagesCWE-94 8.8 High2025-05-15
CVE-2025-1309 UiPress lite | Effortless custom dashboards, admin themes and pages <= 3.5.04 - Missing Authorization to Authenticated (Subscriber+) Arbitrary Options Update — UiPress lite | Effortless custom dashboards, admin themes and pagesCWE-862 8.8 High2025-03-07

This page lists every published CVE security advisory associated with admintwentytwenty. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.