Lucene search
K

56 matches found

Rosalinux
Rosalinux
added 2026/03/15 6:5 p.m.8 views

Advisory ROSA-SA-2026-3208

Software: webmin 2.520 WASP: ROSA-CHROME unaffected versions = webmin-2.520-1 affected versions webmin-2.520-1 CVE-ID: CVE-2025-61541 BDU-ID: 2025-14429 CVE-Crit: HIGH CVE-DESC.: A vulnerability in the getwebminemailurl function of the Webmin hosting control panel is related to access delimitatio...

7.1CVSS5.7AI score0.00416EPSS
Exploits1
Redos
Redos
added 2025/11/13 12:0 a.m.5 views

ROS-20251113-02

The Webmin hosting control panel vulnerability involves manipulating the Host header to inject a malicious domain into a password reset email. malicious domain in a password reset link email. Exploitation of the vulnerability could allow an attacker acting remotely to intercept the password reset...

7.1CVSS7.1AI score0.00416EPSS
Exploits1
EUVD
EUVD
added 2025/10/07 12:30 a.m.3 views

EUVD-2008-6060

Malware in sbrugna...

4.3CVSS6.4AI score0.02287EPSS
Exploits0References5
EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2007-6051

Malware in sbrugna...

9.3CVSS6.4AI score0.03638EPSS
Exploits0References7
EUVD
EUVD
added 2025/10/03 8:7 p.m.8 views

EUVD-2025-24012

Malicious code in bioql PyPI...

4.8CVSS6.5AI score0.00221EPSS
Exploits2References2
EUVD
EUVD
added 2025/10/03 8:7 p.m.4 views

EUVD-2025-25492

Malicious code in bioql PyPI...

6.5CVSS6.5AI score0.00213EPSS
Exploits2References2
CNNVD
CNNVD
added 2025/09/19 12:0 a.m.5 views

Control Web Panel 操作系统命令注入漏洞

Control Web Panel is a Linux web hosting control panel. An operating system command injection vulnerability exists in Control Web Panel versions prior to 0.9.8.1205, which stems from the ttotal parameter in the filemanager changePerm request containing shell metacharacters, which could lead to...

9CVSS8.4AI score0.99589EPSS
Exploits3References2
RedhatCVE
RedhatCVE
added 2025/08/24 12:13 a.m.6 views

CVE-2025-50859

Reflected Cross-Site Scripting in the Change Template function in Easy Hosting Control Panel EHCP 20.04.1.b allows authenticated attackers to execute arbitrary JavaScript via the template parameter...

6.1CVSS6.9AI score0.00272EPSS
Exploits3References1
CNNVD
CNNVD
added 2025/08/21 12:0 a.m.3 views

EHCP Easy Hosting Control Panel 安全漏洞

EHCP Easy Hosting Control Panel is an open source web hosting control panel from EHCP. A security vulnerability exists in EHCP Easy Hosting Control Panel version 20.04.1.b. The vulnerability stems from a SQL injection in the listdomains function, which could lead to database content access or...

5.4CVSS7.5AI score0.00213EPSS
Exploits2References3
Positive Technologies
Positive Technologies
added 2025/08/19 12:0 a.m.6 views

PT-2025-33860 · Unknown · Easy Hosting Control Panel

Name of the Vulnerable Software and Affected Versions: Easy Hosting Control Panel EHCP version 20.04.1.b Description: The Easy Hosting Control Panel EHCP contains a SQL injection issue via the id parameter in the List All Email Addresses function. Recommendations: At the moment, there is no...

6.5CVSS8AI score0.0024EPSS
Exploits2References4
CNNVD
CNNVD
added 2025/08/19 12:0 a.m.3 views

Easy Hosting Control Panel EHCP 安全漏洞

Easy Hosting Control Panel EHCP is a hosting control panel from Easy Hosting Control Panel, Inc. A security vulnerability exists in Easy Hosting Control Panel EHCP version v20.04.1.b, which originates from a parameter injection and could lead to an SQL injection attack...

6.5CVSS7.8AI score0.0024EPSS
Exploits2References3
Redos
Redos
added 2024/09/17 12:0 a.m.20 views

ROS-20240917-05

Vulnerability in the sysinfo.cgi script implementation of Webmin hosting control panel exists due to failure to take measures to protect the structure of the web page. Exploitation of the vulnerability could allow an attacker, acting remotely, to execute an arbitrary script...

5.4CVSS7.2AI score0.00303EPSS
Exploits0
BDU FSTEC
BDU FSTEC
added 2024/07/15 12:0 a.m.5 views

The vulnerability of the ajaxterm module in the Webmin hosting control panel allows a hacker to intercept the console session.

The vulnerability of the ajaxterm module in the Webmin hosting control panel is related to incorrect handling of permissions or privileges. Exploiting this vulnerability could allow a malicious actor, operating remotely, to intercept the console session...

9CVSS7.6AI score0.00569EPSS
Exploits0References3Affected Software1
CNNVD
CNNVD
added 2024/05/03 12:0 a.m.6 views

Control Web Panel 安全漏洞

Control Web Panel is a Linux web hosting control panel. A security vulnerability exists in Control Web Panel that stems from a command injection remote code execution vulnerability that could allow a remote attacker to execute arbitrary code on an affected installation...

8.8CVSS9.3AI score0.02126EPSS
Exploits0References2
CNNVD
CNNVD
added 2024/05/03 12:0 a.m.8 views

Control Web Panel 安全漏洞

Control Web Panel is a Linux web hosting control panel. A security vulnerability exists in Control Web Panel that stems from the presence of a Command Injection Local Elevation of Privilege vulnerability that could allow a remote attacker to elevate privileges on an affected installation...

7.8CVSS7.8AI score0.00712EPSS
Exploits0References2
BDU FSTEC
BDU FSTEC
added 2022/08/12 12:0 a.m.6 views

The vulnerability of the software component apt-lib.pl in the Webmin hosting control panel allows a hacker to execute arbitrary code.

The vulnerability of the software/apt-lib.pl component in the Webmin hosting panel is related to the lack of mechanisms for encoding or shielding output data. Exploiting this vulnerability allows a remote attacker to execute arbitrary code...

10CVSS8.1AI score0.96049EPSS
Exploits8References7Affected Software1
CNNVD
CNNVD
added 2022/05/16 12:0 a.m.5 views

Parallels H-Sphere 跨站脚本漏洞

Parallels H-Sphere is a web-hosting automation control panel from Parallels, Inc. It is used for shared web hosting services. Parallels H-Sphere version 3.6.2 contains a cross-site scripting vulnerability that can be exploited by attackers to perform XSS via indexen.php in the parameters...

6.1CVSS5.8AI score0.02102EPSS
Exploits0References3
CNVD
CNVD
added 2020/08/05 12:0 a.m.4 views

CentOS Web Panel Operating System Command Injection Vulnerability (CNVD-2020-44602)

CentOS Web Panel CWP is a free web hosting control panel. An operating system command injection vulnerability exists in the ajaxmodsecurity.php file in the CentOS Web Panel cwp-el7-0.9.8.891 release, which stems from a failure to properly validate user-supplied strings before executing system...

10CVSS8.1AI score0.08083EPSS
Exploits0References1
CNVD
CNVD
added 2019/08/22 12:0 a.m.3 views

Unspecified vulnerability in cPanel (CNVD-2019-29019)

cPanel is a set of Web-based automated colocation platform from the US-based cPanel. The platform is primarily used to automate the management of websites and servers. A security vulnerability exists in versions prior to cPanel 55.9999.141. An attacker can exploit this vulnerability to perform...

6.8CVSS6.8AI score0.01029EPSS
Exploits0References1
CNVD
CNVD
added 2019/08/06 12:0 a.m.4 views

cPanel Code Execution Vulnerability (CNVD-2019-26335)

cPanel is a set of Web-based automated colocation platform from the US-based cPanel. The platform is primarily used to automate the management of websites and servers. A code execution vulnerability exists in versions of cPanel prior to 64.0.21. An attacker can exploit the vulnerability to execut...

7.5CVSS7.7AI score0.01267EPSS
Exploits0References1
Rows per page
Query Builder