Lucene search
+L

4 matches found

redhatcve
redhatcve
added 2025/02/05 2:51 p.m.12 views

CVE-2020-15615

This vulnerability allows remote attackers to execute arbitrary code on affected installations of CentOS Web Panel cwp-e17.0.9.8.923. Authentication is not required to exploit this vulnerability. The specific flaw exists within ajaxftpmanager.php. The issue results from the lack of proper...

10CVSS7.3AI score0.08083EPSS
Exploits0
nvd
nvd
added 2020/07/28 5:15 p.m.26 views

CVE-2020-15615

This vulnerability allows remote attackers to execute arbitrary code on affected installations of CentOS Web Panel cwp-e17.0.9.8.923. Authentication is not required to exploit this vulnerability. The specific flaw exists within ajaxftpmanager.php. The issue results from the lack of proper...

10CVSS9.7AI score0.08083EPSS
Exploits0References1
prion
prion
added 2020/07/28 5:15 p.m.12 views

Design/Logic Flaw

This vulnerability allows remote attackers to execute arbitrary code on affected installations of CentOS Web Panel cwp-e17.0.9.8.923. Authentication is not required to exploit this vulnerability. The specific flaw exists within ajaxftpmanager.php. The issue results from the lack of proper...

10CVSS9.6AI score0.08083EPSS
Exploits0References1Affected Software1
cve
cve
added 2020/07/28 5:1 p.m.64 views

CVE-2020-15615

The CVE-2020-15615 entry affects CentOS Web Panel (CWP) version cwp-e17.0.9.8.923. The flaw is in ajax_ftp_manager.php, where a user-supplied string is used to construct a system call without proper validation, allowing unauthenticated remote code execution with root privileges. Public references...

10CVSS9.6AI score0.08083EPSS
Exploits0References1Affected Software1
Rows per page
Query Builder