3 matches found
Design/Logic Flaw
This vulnerability allows remote attackers to execute arbitrary code on affected installations of CentOS Web Panel cwp-e17.0.9.8.923. Authentication is not required to exploit this vulnerability. The specific flaw exists within ajaxadminapis.php. The issue results from the lack of proper validati...
CVE-2020-15606
This vulnerability allows remote attackers to execute arbitrary code on affected installations of CentOS Web Panel cwp-e17.0.9.8.923. Authentication is not required to exploit this vulnerability. The specific flaw exists within ajaxadminapis.php. The issue results from the lack of proper validati...
CVE-2020-15606
CVE-2020-15606 affects CentOS Web Panel (cwp-e17.0.9.8.923). The vulnerability is a remote code execution flaw in ajax_admin_apis.php caused by insufficient validation of a user-supplied string used to call a system command, allowing an unauthenticated attacker to execute code as root. Public dis...