CVE-2019-14725

In CentOS-WebPanel.com aka CWP CentOS Web Panel 0.9.8.851, an insecure object reference allows an attacker to change the e-mail usage value of a victim account via an attacker account...

CVE-2019-14725

In CentOS-WebPanel.com aka CWP CentOS Web Panel 0.9.8.851, an insecure object reference allows an attacker to change the e-mail usage value of a victim account via an attacker account...

CentOS Web Panel Elevation of Privilege Vulnerability

CentOS Web Panel CWP is a free web hosting control panel. An elevation of privilege vulnerability exists in CentOS Web Panel version 0.9.8.851, which can be exploited by an attacker to remove targeted users from phpMyAdmin...

CentOS Web Panel Input Validation Error Vulnerability

CentOS Web Panel CWP is a free web hosting control panel. An input validation error vulnerability exists in CentOS Web Panel version 0.9.8.851, which can be exploited by an attacker to remove email forwarding destinations from an affected user's account...

CentOS Web Panel Input Validation Error Vulnerability (CNVD-2019-32251)

CentOS Web Panel CWP is a free web hosting control panel. An input validation error vulnerability exists in CentOS Web Panel version 0.9.8.851, which can be exploited by an attacker to access and delete DNS records of affected users...

CentOS Web Panel Input Validation Error Vulnerability (CNVD-2019-32243)

CentOS Web Panel CWP is a free web hosting control panel. An input validation error vulnerability exists in CentOS Web Panel version 0.9.8.851, which can be exploited by an attacker to add an email forwarding destination to an affected user's account...

CentOS Web Panel Input Validation Error Vulnerability (CNVD-2019-32244)

CentOS Web Panel CWP is a free web hosting control panel. An input validation error vulnerability exists in CentOS Web Panel version 0.9.8.851, which can be exploited by an attacker to remove subdomains from an affected user's account...

CentOS Web Panel Input Validation Error Vulnerability (CNVD-2019-32245)

CentOS Web Panel CWP is a free web hosting control panel. An input validation error vulnerability exists in CWP version 0.9.8.851, which arises from a network system or product that does not properly validate incoming data. No detailed vulnerability details are currently available...

PT-2019-13804 · Centos · Centos Web Panel

Name of the Vulnerable Software and Affected Versions: CentOS Web Panel version 0.9.8.851 Description: The issue allows an attacker to edit an e-mail forwarding destination of a victim's account via an attacker account due to an insecure object reference. Recommendations: For version 0.9.8.851,...

PT-2019-13805 · Centos · Centos Web Panel

Name of the Vulnerable Software and Affected Versions: CentOS Web Panel version 0.9.8.851 Description: The issue allows an attacker to modify the e-mail usage value of a victim's account using their own account, due to an insecure object reference. Recommendations: For version 0.9.8.851, at the...

PT-2019-4387 · Centos · Centos Web Panel

Name of the Vulnerable Software and Affected Versions: CentOS Web Panel version 0.9.8.851 Description: The issue allows an attacker to access and delete DNS records of a victim's account via an attacker account due to an insecure object reference. This is caused by insufficient input validation,...

PT-2019-4388 · Centos · Centos Web Panel

Name of the Vulnerable Software and Affected Versions: CentOS Web Panel version 0.9.8.851 Description: The issue allows an attacker to change the e-mail password of a victim account via an attacker account due to an insecure object reference. This is caused by insufficient input validation, which...

PT-2019-13803 · Centos · Centos Web Panel

Name of the Vulnerable Software and Affected Versions: CentOS Web Panel version 0.9.8.851 Description: The issue allows an attacker to delete an e-mail forwarding destination from a victim's account via an attacker account due to an insecure object reference. Recommendations: For version 0.9.8.85...

PT-2019-4644 · Centos · Centos Web Panel

Name of the Vulnerable Software and Affected Versions: CentOS Web Panel version 0.9.8.851 Description: The issue exists due to insufficient input validation in the application, allowing a remote attacker to delete a domain from a user's account. This can be achieved by an attacker using their own...

PT-2019-13558 · Centos · Centos Web Panel

Name of the Vulnerable Software and Affected Versions: CentOS Web Panel version 0.9.8.851 Description: An insecure object reference in CentOS Web Panel allows an attacker to discover phpMyAdmin passwords of any user in /etc/passwd via an attacker account. Recommendations: For version 0.9.8.851,...

CentOS Web Panel Permissions License and Access Control Issues Vulnerability

CentOS Web Panel CWP is a free web hosting control panel. A privilege permission and access control issue vulnerability exists in CentOS Web Panel version 0.9.8.851, which can be exploited by an attacker to delete arbitrary databases...