Lucene search
PRIOn knowledge basePRION:CVE-2019-14246HistoryAug 21, 2019 - 7:15 p.m.
Design/Logic Flaw
2019-08-2119:15:00
PRIOn knowledge base
www.prio-n.com
2
In CentOS-WebPanel.com (aka CWP) CentOS Web Panel 0.9.8.851, an insecure object reference allows an attacker to discover phpMyAdmin passwords (of any user in /etc/passwd) via an attacker account.
| CPE | Name | Operator | Version |
|---|---|---|---|
| centos_web_panel | eq | 0.9.8.851 |
References
packetstormsecurity.com/files/154156/CentOS-Control-Web-Panel-CWP-0.9.8.851-phpMyAdmin-Password-Change.html
packetstormsecurity.com/files/154156/CentOS-WebPanel.com-CentOS-Control-Web-Panel-CWP-0.9.8.851-phpMyAdmin-Password-Change.html
packetstormsecurity.com/files/154156/CentOS-WebPanel.com-Control-Web-Panel-CWP-0.9.8.851-phpMyAdmin-Password-Change.html
centos-webpanel.com/changelog-cwp7
Related
packetstorm
packetstorm
nvd
nvd
CVE-2019-14246
2019-08-21 19:15:13
cve
cve
CVE-2019-14246
2019-08-21 19:15:13
zdt
zdt
cvelist
cvelist
CVE-2019-14246
2019-08-21 18:38:44