2 matches found
CVE-2020-15616
CVE-2020-15616 affects CentOS Web Panel (cwp-e17.0.9.8.923). The flaw resides in ajax_list_accounts.php where parsing of the package parameter enables unauthenticated remote SQL information disclosure in the context of root due to inadequate input validation when building queries. Multiple source...
CVE-2020-15616
This vulnerability allows remote attackers to disclose sensitive information on affected installations of CentOS Web Panel cwp-e17.0.9.8.923. Authentication is not required to exploit this vulnerability. The specific flaw exists within ajaxlistaccounts.php. When parsing the package parameter, the...