Lucene search
+L

4 matches found

RedhatCVE
RedhatCVE
added 2025/02/05 2:57 p.m.10 views

CVE-2020-15423

This vulnerability allows remote attackers to execute arbitrary code on affected installations of CentOS Web Panel cwp-e17.0.9.8.923. Authentication is not required to exploit this vulnerability. The specific flaw exists within ajaxmodsecurity.php. When parsing the dominio parameter, the process...

10CVSS7.3AI score0.08083EPSS
Exploits0References3
NVD
NVD
added 2020/07/28 5:15 p.m.30 views

CVE-2020-15423

This vulnerability allows remote attackers to execute arbitrary code on affected installations of CentOS Web Panel cwp-e17.0.9.8.923. Authentication is not required to exploit this vulnerability. The specific flaw exists within ajaxmodsecurity.php. When parsing the dominio parameter, the process...

10CVSS9.7AI score0.08083EPSS
Exploits0References1
OSV
OSV
added 2020/07/28 5:15 p.m.3 views

CVE-2020-15423

This vulnerability allows remote attackers to execute arbitrary code on affected installations of CentOS Web Panel cwp-e17.0.9.8.923. Authentication is not required to exploit this vulnerability. The specific flaw exists within ajaxmodsecurity.php. When parsing the dominio parameter, the process...

9.8CVSS6.2AI score0.08083EPSS
Exploits0References1
CVE
CVE
added 2020/07/28 5:1 p.m.48 views

CVE-2020-15423

CVE-2020-15423 affects CentOS Web Panel (cwp-e17.0.9.8.923). The vulnerability is in ajax_mod_security.php where parsing the dominio parameter allows an attacker to bypass validation and execute a system call, yielding remote code execution with root privileges. Multiple connected sources corrobo...

10CVSS9.6AI score0.08083EPSS
Exploits0References1Affected Software1
Rows per page
Query Builder