Webpanel@* Security Vulnerabilities and Issues — Webpanel@* CVE List

Lucene search

Control-webpanelWebpanel*

5 matches found

CVE•added 2018/11/20 7:29 p.m.•81 views

CVE-2018-18773

CentOS-WebPanel.com (aka CWP) CentOS Web Panel through 0.9.8.740 allows CSRF via admin/index.php?module=rootpwd, as demonstrated by changing the root password.

8.8CVSS8.6AI score0.00426EPSS

Web

CVE•added 2018/11/20 7:29 p.m.•76 views

CVE-2018-18772

CentOS-WebPanel.com (aka CWP) CentOS Web Panel through 0.9.8.740 allows CSRF via admin/index.php?module=send_ssh, as demonstrated by executing an arbitrary OS command.

8.8CVSS8.7AI score0.00533EPSS

Web

CVE•added 2018/11/20 7:29 p.m.•74 views

CVE-2018-18774

CentOS-WebPanel.com (aka CWP) CentOS Web Panel through 0.9.8.740 allows XSS via the admin/index.php module parameter.

6.1CVSS6.8AI score0.04002EPSS

Web

CVE•added 2018/01/22 1:29 a.m.•35 views

CVE-2018-5962

index.php in CentOS-WebPanel.com (aka CWP) CentOS Web Panel through v0.9.8.12 has XSS via the id parameter to the phpini_editor module or the email_address parameter to the mail_add-new module.

6.1CVSS5.9AI score0.00328EPSS

Web

CVE•added 2018/01/22 1:29 a.m.•34 views

CVE-2018-5961

CentOS-WebPanel.com (aka CWP) CentOS Web Panel through v0.9.8.12 has XSS via the module value of the index.php file.

6.1CVSS5.9AI score0.0033EPSS

Web