Critical Security Alert: Vulnerable CyberPanel Instance Detected on Your Network

To all whose server has been encrypted.
You only have the option of importing a backup and updating to the latest version.
Paying the rasom claim and hope to get back your files.

Alternatively, you can sue Cyberpanel for damages.
Since they have not informed any user after being informed about this issue and when the update was ready.
Since there is also no autmatic update routine provided by cyberpanel, which can also fail.

Leading to the system getting encrypted!

3 Likes

I’ve updated my repository that has the kinsing malware cleaning script, it now includes the PSAUX script for decrpytion and README.md

You should be able to download the 1-decrypt.sh and run it against your files.

4 Likes

I created a new script

Which should be an improvement, I haven’t tested it as I don’t have access to a server that has been encrypted. But it atleast doesn’t delete the files after decryption, which is important if the decryption fails.

2 Likes

Our server in contabo is also effected with encryption and ransomware with a read me file to buy decryption software - C3rb3r Decryptor

Any help please, I do not have backups too…

How can I upgrade to a version that is not effected?
please see attached pic

Why no answer!!!
TELL me how to upgrade to a version that is not effected!!!

Hi there, some tutorial to upgrade cyberpanel in Centos 7 ? we have a lot of centos7 servers

error:

protobuf requires Python ‘>=3.7’ but the running Python is 3.6.8

Upgrade Python to 3.7 and should work.

sudo yum groupinstall “Development Tools”
sudo yum install openssl-devel bzip2-devel libffi-devel

Download Python package:

wget https://www.python.org/ftp/python/3.7.9/Python-3.7.9.tgz

Unzip:

tar xzf Python-3.7.9.tgz

Go to the folder

cd Python-3.7.9

Install:

./configure --enable-optimizations
make altinstall

Check installation:

python3.7 --version

You also have to set that python 3.7 as default because /bin/python3 is for python 3.6, he will still get the error:

#prepare
sudo yum groupinstall “Development Tools”
sudo yum install openssl-devel bzip2-devel libffi-devel

#Download and install
wget https://www.python.org/ftp/python/3.7.9/Python-3.7.9.tgz
tar xzf Python-3.7.9.tgz
cd Python-3.7.9
./configure --enable-optimizations
make altinstall

#cleanup
rm -rf Python-3.7.9 Python-3.7.9.tgz

#Finalize setup
mv /bin/python3 /bin/python3.bak
mv /bin/pip3 /bin/pip3.bak
ln -s /usr/local/bin/pip3.7 /bin/pip3
ln -s /usr/local/bin/python3.7 /bin/python3
1 Like

I’m trying to upgrade from 2.3.4 to 2.3.8 due all the security issues, but in the end the installation console throws an error after start Pure-FTPd, the error doesn’t say anything relevant, just say that something goes wrong, but I can’t find any log or any information about this error. I really need to upgrade Cyberpanel because lot of my customers depends of that. Thanks!

I’m using Centos 7

After run some scripts, the version 2.3.8 seems to be installed but no accessible through port 8090, I’m getting a 503 error, and I don’t know how to proceed with that.

image

thank you! not compatibility issues with the rest of the OS ?

wich is exactly the vulnerable version ? 2.3.6 ?

Hi guys,
Which panel to switch as alternatief? I don’t mind to pay…

It’s time to stop with CyberPanel. Lots of issues, now this and lately their spammy messages to sell plugins, backups, etc… time to say bye bye and invest into something proper.

< 2.3.7 needs to be updated asap

I think i’m getting some headway on the 503, will post updates if I get it fixed.

1 Like

You must do this over ssh 02 - Upgrading CyberPanel

I tried many ways but in the long run I chose to use ubuntu22

@tomasalfonsook @mblendinger

I can’t solve the 503 error at this time but I got the panel working somewhat on Cloudlinux 7/CentOS 7 with the latest version Cyberpanel version.
Not everything is working and I will review it later on.

Not working (Noticed):
csf interface
phpmyadmin

Note Below:
You can skip the removal of python 3.7 and installation of python3.8 if you like and then come back to it if you get any issues.
You can go straight to (#After install)

Since you installed python3.7 we have to cleanup:

rm -f /usr/local/bin/python3.7
rm -f /usr/local/bin/python3
rm -f /usr/local/bin/pip3.7
rm -f /usr/local/bin/pip3
rm -rf /usr/local/lib/python3.7
rm -rf /usr/local/include/python3.7
rm -rf /usr/share/man/man1/python3.7.1
rm -f /usr/local/bin/python3.7m /usr/local/share/man/man1/python3.7.1

Install alt-python38 instead as I was seeing some errors with 3.7

dnf -y install alt-python38 alt-python38-devel
/opt/alt/python38/bin/pip3.8 install --upgrade pip

mv /bin/python3 /bin/python3.bak
mv /bin/pip3 /bin/pip3.bak
mv /usr/local/bin/pip3 /usr/local/bin/pip3.bak
ln -s /opt/alt/python38/bin/pip3.8 /bin/pip3
ln -s /opt/alt/python38/bin/pip3.8 /usr/local/bin/pip3
ln -s /opt/alt/python38/bin/python3.8 /bin/python3

/opt/alt/python38/bin/pip3.8 install docutils
/opt/alt/python38/bin/pip3.8 install "async_timeout>=3.0,<4.0"
/opt/alt/python38/bin/pip3.8 uninstall aiohttp
/opt/alt/python38/bin/pip3.8 install aiohttp
pip3 install Django==4.2.14

We need to make some changes:
nano /usr/local/bin/virtualenv
Change /usr/local/bin/python3.7 to /opt/alt/python38/bin/python3.8

Now run the upgrade script:

sh <(curl https://raw.githubusercontent.com/usmannasir/cyberpanel/stable/preUpgrade.sh || wget -O - https://raw.githubusercontent.com/usmannasir/cyberpanel/stable/preUpgrade.sh)

#After install

pip3 install django-sslserver

#Add 'sslserver', to the INSTALLED_APPS section in /usr/local/CyberCP/CyberCP/settings.py

service lscpd stop
pkill -f runsslserver;sudo -u root -g root python3 /usr/local/CyberCP/manage.py runsslserver 0.0.0.0:8090 --certificate /etc/letsencrypt/live/your-server-domain.com/cert.pem --key /etc/letsencrypt/live/your-server-domain.com/privkey.pem &

You can create a service for it if you like so it’s easier to manage.

Thank you
Has anyone tried elevating CentOS 7 to AlmaLinux? Is it safe?


Is this ok?