2 matches found
CVE-2020-15428
CVE-2020-15428 affects CentOS Web Panel (cwp-e17.0.9.8.923). The flaw is in ajax_crons.php: when parsing the line parameter, user-supplied input is used to perform a system call without proper validation, allowing remote attackers to execute code with root privileges. Exploitation is unauthentica...
CVE-2020-15428
This vulnerability allows remote attackers to execute arbitrary code on affected installations of CentOS Web Panel cwp-e17.0.9.8.923. Authentication is not required to exploit this vulnerability. The specific flaw exists within ajaxcrons.php. When parsing the line parameter, the process does not...