SitePanel2 contains a flaw that may allow an attacker to execute arbitrary files. The issue is due to the system allowing users to upload any file as an attachment to a trouble ticket. Once uploaded, the file can be executed with the same privileges as the web server.
Upgrade to version 18.104.22.168 or higher, as it has been reported to fix this vulnerability. An upgrade is required as there are no known workarounds.