2 matches found
CVE-2020-15420
This vulnerability allows remote attackers to execute arbitrary code on affected installations of CentOS Web Panel cwp-el7-0.9.8.891. Authentication is not required to exploit this vulnerability. The specific flaw exists within loaderajax.php. When parsing the line parameter, the process does not...
CVE-2020-15420
CVE-2020-15420 affects CentOS Web Panel (cwp-el7-0.9.8.891). The flaw is in loader_ajax.php when parsing the line parameter, which is used to execute a system call without proper validation. This leads to remote code execution with root privileges and requires no authentication. The issue is docu...