Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
control-webpanel webpanel vulnerabilities and exploits
(subscribe to this query)
9.8
CVSSv3
CVE-2020-15606
This vulnerability allows remote malicious users to execute arbitrary code on affected installations of CentOS Web Panel cwp-e17.0.9.8.923. Authentication is not required to exploit this vulnerability. The specific flaw exists within ajax_admin_apis.php. The issue results from th...
Control-webpanel Webpanel 0.9.8.923
9.8
CVSSv3
CVE-2020-15608
This vulnerability allows remote malicious users to execute arbitrary code on affected installations of CentOS Web Panel cwp-e17.0.9.8.923. Authentication is not required to exploit this vulnerability. The specific flaw exists within ajax_dashboard.php. When parsing the ai_servic...
Control-webpanel Webpanel 0.9.8.923
9.8
CVSSv3
CVE-2020-15610
This vulnerability allows remote malicious users to execute arbitrary code on affected installations of CentOS Web Panel cwp-e17.0.9.8.923. Authentication is not required to exploit this vulnerability. The specific flaw exists within ajax_php_pecl.php. When parsing the modulo par...
Control-webpanel Webpanel 0.9.8.923
9.8
CVSSv3
CVE-2020-15615
This vulnerability allows remote malicious users to execute arbitrary code on affected installations of CentOS Web Panel cwp-e17.0.9.8.923. Authentication is not required to exploit this vulnerability. The specific flaw exists within ajax_ftp_manager.php. The issue results from t...
Control-webpanel Webpanel 0.9.8.923
7.5
CVSSv3
CVE-2020-15619
This vulnerability allows remote malicious users to disclose sensitive information on affected installations of CentOS Web Panel cwp-e17.0.9.8.923. Authentication is not required to exploit this vulnerability. The specific flaw exists within ajax_list_accounts.php. When parsing t...
Control-webpanel Webpanel 0.9.8.923
7.5
CVSSv3
CVE-2020-15622
This vulnerability allows remote malicious users to disclose sensitive information on affected installations of CentOS Web Panel cwp-e17.0.9.8.923. Authentication is not required to exploit this vulnerability. The specific flaw exists within ajax_mail_autoreply.php. When parsing ...
Control-webpanel Webpanel 0.9.8.923
7.5
CVSSv3
CVE-2020-15626
This vulnerability allows remote malicious users to disclose sensitive information on affected installations of CentOS Web Panel cwp-e17.0.9.8.923. Authentication is not required to exploit this vulnerability. The specific flaw exists within ajax_dashboard.php. When parsing the t...
Control-webpanel Webpanel 0.9.8.923
7.5
CVSSv3
CVE-2020-15627
This vulnerability allows remote malicious users to disclose sensitive information on affected installations of CentOS Web Panel cwp-e17.0.9.8.923. Authentication is not required to exploit this vulnerability. The specific flaw exists within ajax_mail_autoreply.php. When parsing ...
Control-webpanel Webpanel 0.9.8.923
5.9
CVSSv3
CVE-2022-25047
The password reset token in CWP v0.9.8.1126 is generated using known or predictable values.
Control-webpanel Webpanel 0.9.8.1126
8.8
CVSSv3
CVE-2022-25048
Command injection vulnerability in CWP v0.9.8.1126 that allows normal users to run commands as the root user.
Control-webpanel Webpanel 0.9.8.1126
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-36954
CVE-2024-36933
CVE-2024-24919
CVE-2024-36923
CVE-2024-2961
CVE-2024-36925
bypass
encryption
command injection
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
NEXT »