CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

OSV•added 2019/09/11 12:15 p.m.•1 views

CVE-2019-14725

In CentOS-WebPanel.com aka CWP CentOS Web Panel 0.9.8.851, an insecure object reference allows an attacker to change the e-mail usage value of a victim account via an attacker account...

4.3CVSS5.8AI score0.00214EPSS

Prion•added 2019/09/11 12:15 p.m.•14 views

Design/Logic Flaw

In CentOS-WebPanel.com aka CWP CentOS Web Panel 0.9.8.851, an insecure object reference allows an attacker to edit an e-mail forwarding destination of a victim's account via an attacker account...

5CVSS7.5AI score0.09681EPSS

CVE•added 2019/09/11 11:28 a.m.•59 views

CVE-2019-14724

CVE-2019-14724 affects CentOS Web Panel version 0.9.8.851. The vulnerability is an insecure object reference that allows an attacker with an attacker account to edit the victim’s e‑mail forwarding destination. Root cause: improper access control on the object representing the e‑mail forwarding se...

7.5CVSS7.4AI score0.09681EPSS

Cvelist•added 2019/09/11 11:26 a.m.•32 views

CVE-2019-14725

In CentOS-WebPanel.com aka CWP CentOS Web Panel 0.9.8.851, an insecure object reference allows an attacker to change the e-mail usage value of a victim account via an attacker account...

4.6AI score0.00214EPSS

Positive Technologies•added 2019/09/11 12:0 a.m.•3 views

PT-2019-13805 · Centos · Centos Web Panel

Name of the Vulnerable Software and Affected Versions: CentOS Web Panel version 0.9.8.851 Description: The issue allows an attacker to modify the e-mail usage value of a victim's account using their own account, due to an insecure object reference. Recommendations: For version 0.9.8.851, at the...

4.3CVSS4.4AI score0.00214EPSS

Exploits1References4

5.4CVSS6.1AI score0.0022EPSS

CVE-2019-14726

In CentOS-WebPanel.com aka CWP CentOS Web Panel 0.9.8.851, an insecure object reference allows an attacker to access and delete DNS records of a victim's account via an attacker account...

OSV•added 2019/09/10 4:15 p.m.•1 views

CVE-2019-14728

In CentOS-WebPanel.com aka CWP CentOS Web Panel 0.9.8.851, an insecure object reference allows an attacker to add an e-mail forwarding destination to a victim's account via an attacker account...

NVD•added 2019/09/10 4:15 p.m.•16 views

CVE-2019-14726

In CentOS-WebPanel.com aka CWP CentOS Web Panel 0.9.8.851, an insecure object reference allows an attacker to access and delete DNS records of a victim's account via an attacker account...

6.5CVSS5.5AI score0.0022EPSS

NVD•added 2019/09/10 4:15 p.m.•15 views

CVE-2019-14729

In CentOS-WebPanel.com aka CWP CentOS Web Panel 0.9.8.851, an insecure object reference allows an attacker to delete a sub-domain from a victim's account via an attacker account...

5.5CVSS4.6AI score0.00582EPSS

CVE-2019-14727

In CentOS-WebPanel.com aka CWP CentOS Web Panel 0.9.8.851, an insecure object reference allows an attacker to change the e-mail password of a victim account via an attacker account...

NVD•added 2019/09/10 4:15 p.m.•17 views

CVE-2019-14727

In CentOS-WebPanel.com aka CWP CentOS Web Panel 0.9.8.851, an insecure object reference allows an attacker to change the e-mail password of a victim account via an attacker account...

4.3CVSS4.7AI score0.00582EPSS

NVD•added 2019/09/10 4:15 p.m.•19 views

CVE-2019-14730

In CentOS-WebPanel.com aka CWP CentOS Web Panel 0.9.8.851, an insecure object reference allows an attacker to delete a domain from a victim's account via an attacker account...

4.3CVSS4.6AI score0.00582EPSS

CVE-2019-14729

In CentOS-WebPanel.com aka CWP CentOS Web Panel 0.9.8.851, an insecure object reference allows an attacker to delete a sub-domain from a victim's account via an attacker account...

OSV•added 2019/09/10 4:15 p.m.•3 views

CVE-2019-14723

In CentOS-WebPanel.com aka CWP CentOS Web Panel 0.9.8.851, an insecure object reference allows an attacker to delete a victim's e-mail account via an attacker account...

6.5CVSS6.6AI score0.00621EPSS

CVE-2019-14721

In CentOS-WebPanel.com aka CWP CentOS Web Panel 0.9.8.851, an insecure object reference allows an attacker to remove a target user from phpMyAdmin via an attacker account...

Exploits2References3

NVD•added 2019/09/10 4:15 p.m.•12 views

CVE-2019-14721

In CentOS-WebPanel.com aka CWP CentOS Web Panel 0.9.8.851, an insecure object reference allows an attacker to remove a target user from phpMyAdmin via an attacker account...

6.5CVSS6.4AI score0.00621EPSS

Exploits2References3

OSV•added 2019/09/10 4:15 p.m.•4 views

CVE-2019-14722

In CentOS-WebPanel.com aka CWP CentOS Web Panel 0.9.8.851, an insecure object reference allows an attacker to delete an e-mail forwarding destination from a victim's account via an attacker account...

Prion•added 2019/09/10 4:15 p.m.•17 views

Design/Logic Flaw

In CentOS-WebPanel.com aka CWP CentOS Web Panel 0.9.8.851, an insecure object reference allows an attacker to change the e-mail password of a victim account via an attacker account...

4CVSS4.7AI score0.00582EPSS

Prion•added 2019/09/10 4:15 p.m.•21 views

Design/Logic Flaw

4CVSS4.6AI score0.00582EPSS