Lucene search
K

4 matches found

CNVD
CNVD
added 2021/05/21 12:0 a.m.7 views

CentOS Web Panel Command Injection Vulnerability

CentOS Web Panel CWP is a free web hosting control panel from the Control Web Panel community. A security vulnerability exists in CentOS Web Panel that originates in the Unprivileged User Portal section that is affected by a command injection vulnerability that can be exploited by an attacker to...

10CVSS8AI score0.34062EPSS
Exploits1References1
CVE
CVE
added 2021/05/18 7:43 p.m.88 views

CVE-2021-31324

CentOS Web Panel’s unprivileged User Portal is affected by a Command Injection vulnerability (CVE-2021-31324). The Nuclei templates describe exploitation via the idsession parameter, allowing unauthenticated attackers to execute arbitrary OS commands with root privileges, leading to full server c...

10CVSS9.8AI score0.34062EPSS
Exploits1References1Affected Software1
Positive Technologies
Positive Technologies
added 2021/05/18 12:0 a.m.4 views

PT-2021-19237 · Unknown · Centos Web Panel

Name of the Vulnerable Software and Affected Versions: CentOS Web Panel affected versions not specified Description: The issue affects the unprivileged user portal part of CentOS Web Panel, where a SQL Injection is possible via the idsession HTTP POST parameter. Recommendations: At the moment,...

10CVSS9.8AI score0.13029EPSS
Exploits1References3
CNNVD
CNNVD
added 2021/05/18 12:0 a.m.4 views

CentOS Web Panel 操作系统命令注入漏洞

CentOS Web Panel CWP is a free web hosting control panel from the Control Web Panel community. A security vulnerability exists in CentOS Web Panel that originates in the Unprivileged User Portal section that is affected by a command injection vulnerability that can be exploited by an attacker to...

10CVSS6.3AI score0.34062EPSS
Exploits1References2
Rows per page
Query Builder