MEDIUMCVE-2025-34430CVSS 4.3

CVE-2025-34430: CSRF in 1Panel ≤2.0.15

Platform

Component

github.com/1panel-dev/1panel

Fixed in

2.0.16

AI Confidence: highNVDEPSS 0.0%Reviewed: May 2026

View on NVD

Save

CVE-2025-34430 describes a cross-site request forgery (CSRF) vulnerability affecting 1Panel versions up to 2.0.15. This flaw allows an attacker to manipulate panel names without user consent, potentially leading to confusion or unauthorized modifications. The vulnerability resides within the panel name management functionality and lacks proper CSRF defenses. A patch is available to resolve this issue.

Impact and Attack Scenarios

The primary impact of this CSRF vulnerability is the ability for an attacker to modify a victim's 1Panel panel name. This could be used for malicious purposes such as impersonation, phishing attacks, or simply disrupting the user experience. An attacker could craft a malicious webpage containing a request to change the panel name. If a user visits this page while authenticated in 1Panel, their session cookies will be automatically included in the request, allowing the attacker to successfully change the panel name to an arbitrary value. While the immediate impact may seem limited, it can be a stepping stone for further attacks or used to create confusion and distrust among users.

Exploitation Context

CVE-2025-34430 was publicly disclosed on December 10, 2025. No public proof-of-concept (PoC) code is currently available. The EPSS score is pending evaluation. There are no known active campaigns exploiting this vulnerability at this time. This vulnerability is not currently listed on the CISA KEV catalog.

Threat Intelligence

Exploit Status

Proof of ConceptUnknown

CISA KEVNO

Internet ExposureHigh

EPSS

0.03% (9% percentile)

CISA SSVC

Exploitationnone

Automatableno

Technical Impactpartial

CVSS Vector

Affected Software

Componentgithub.com/1panel-dev/1panel

Vendorosv

Affected rangeFixed in

1.10.33 – 2.0.152.0.16

Weakness Classification (CWE)

CWE-352

Timeline

Reserved2025-04-15
Published2025-12-10
Modified2025-12-23
EPSS updated2026-03-23

Unpatched — 165 days since disclosure

Mitigation and Workarounds

The recommended mitigation for CVE-2025-34430 is to upgrade 1Panel to a version that includes the fix. Unfortunately, the specific fixed version is not provided. Until an updated version is available, consider implementing temporary workarounds such as restricting access to the panel name management functionality to trusted users or implementing stricter authentication measures. Web application firewalls (WAFs) can be configured to detect and block suspicious CSRF requests based on patterns and referer checks. Monitor 1Panel logs for unusual panel name changes.

How to fix

Update 1Panel to a version later than 2.0.15. This will fix the CSRF vulnerability in panel name management.

CVE Security Newsletter

Vulnerability analysis and critical alerts directly to your inbox.

Frequently asked questions

What is CVE-2025-34430 — CSRF in 1Panel?

CVE-2025-34430 is a cross-site request forgery (CSRF) vulnerability in 1Panel versions 1.10.33 through 2.0.15, allowing attackers to change panel names without consent.

Am I affected by CVE-2025-34430 in 1Panel?

If you are using 1Panel version 1.10.33 or later, and less than or equal to 2.0.15, you are potentially affected by this vulnerability.

How do I fix CVE-2025-34430 in 1Panel?

Upgrade 1Panel to a patched version that addresses this vulnerability. The specific fixed version is not provided, so monitor the 1Panel website for updates.

Is CVE-2025-34430 being actively exploited?

As of December 10, 2025, there are no confirmed reports of active exploitation of CVE-2025-34430.

Where can I find the official 1Panel advisory for CVE-2025-34430?

Refer to the official 1Panel website and security advisories for the latest information and updates regarding CVE-2025-34430.