Lucene search
K

4 matches found

CNVD
CNVD
added 2019/08/22 12:0 a.m.1 views

CentOS Web Panel Cross-Site Scripting Vulnerability (CNVD-2019-40075)

CentOS Web Panel CWP is a free web-hosting control panel that makes it easy to manage multiple servers without having to access the server via SSH for every little task that needs to be done. A cross-site scripting vulnerability exists in the domain parameters of CentOS Web Panel 0.9.8.837. An...

5.4CVSS6.4AI score0.06512EPSS
Exploits3References1
CNVD
CNVD
added 2019/08/22 12:0 a.m.2 views

CentOS Web Panel Cross-Site Request Forgery Vulnerability (CNVD-2019-40074)

CentOS Web Panel CWP is a free web-hosting control panel that makes it easy to manage multiple servers without having to access the server via SSH for every little task that needs to be done. A cross-site request forgery vulnerability exists in the "Forgot Password" feature in CentOS Web Panel...

8.8CVSS7AI score0.00721EPSS
Exploits3References1
OSV
OSV
added 2019/08/21 7:15 p.m.3 views

CVE-2019-13477

In CentOS-WebPanel.com aka CWP CentOS Web Panel 0.9.8.837, CSRF in the forgot password function allows an attacker to change the password for the root account...

8.8CVSS7.3AI score0.00721EPSS
Exploits3References2
Positive Technologies
Positive Technologies
added 2019/08/20 12:0 a.m.5 views

PT-2019-4344 · Centos · Centos Web Panel

Name of the Vulnerable Software and Affected Versions: CentOS Web Panel version 0.9.8.837 Description: The issue is related to a lack of protection for the web page structure, allowing a low-privilege user to achieve root access via the email list page. This can be exploited by a remote attacker ...

5.4CVSS5.3AI score0.06512EPSS
Exploits3References6
Rows per page
Query Builder