Immersive-Labs-Sec/CentOS-WebPanel
GitHub
Releases0
Stars4
Proof of concepts scripts for vulnerabilities in CentOS Web Panel
CVE History
| CVE | Published | CVSS v3 | CVSS v2 |
|---|---|---|---|
| 9.8 CRITICAL | 10 HIGH | ||
A path traversal vulnerability in loader.php of CWP v0.9.8.1122 allows attackers to execute arbitrary code via a crafted POST request. | |||
| 5.9 MEDIUM | 4.3 MEDIUM | ||
The password reset token in CWP v0.9.8.1126 is generated using known or predictable values. | |||
| 8.8 HIGH | 9 HIGH | ||
Command injection vulnerability in CWP v0.9.8.1126 that allows normal users to run commands as the root user. | |||