Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
web panel vulnerabilities and exploits
(subscribe to this query)
9.8
CVSSv3
CVE-2021-43693
vesta 0.9.8-24 is affected by a file inclusion vulnerability in file web/add/user/index.php.
Vestacp Vesta Control Panel 0.9.8-24
9.8
CVSSv3
CVE-2021-31316
The unprivileged user portal part of CentOS Web Panel is affected by a SQL Injection via the 'idsession' HTTP POST parameter.
Control-webpanel Webpanel -
9.8
CVSSv3
CVE-2021-31324
The unprivileged user portal part of CentOS Web Panel is affected by a Command Injection vulnerability leading to root Remote Code Execution.
Control-webpanel Webpanel -
9.8
CVSSv3
CVE-2021-27215
An issue exists in genua genugate prior to 9.0 Z p19, 9.1.x up to and including 9.6.x prior to 9.6 p7, and 10.x prior to 10.1 p4. The Web Interfaces (Admin, Userweb, Sidechannel) can use different methods to perform the authentication of a user. A specific authentication method d...
Genua Genuagate 10.1
Genua Genuagate
Genua Genuagate 9.0
Genua Genuagate 9.6.0
9.8
CVSSv3
CVE-2020-17500
Barco TransForm NDN-210 Lite, NDN-210 Pro, NDN-211 Lite, and NDN-211 Pro prior to 3.8 allows Command Injection (issue 1 of 4). The NDN-210 has a web administration panel which is made available over https. The logon method is basic authentication. There is a command injection iss...
Barco Transform N
9.8
CVSSv3
CVE-2020-35575
A password-disclosure issue in the web interface on certain TP-Link devices allows a remote malicious user to get full administrative access to the web panel. This affects WA901ND devices prior to 3.16.9(201211) beta, and Archer C5, Archer C7, MR3420, MR6400, WA701ND, WA801ND, WD...
Tp-link Wa901nd Firmware
Tp-link Archer C5 Firmware -
Tp-link Archer C7 Firmware -
Tp-link Mr3420 Firmware -
Tp-link Mr6400 Firmware -
Tp-link Wa701nd Firmware -
Tp-link Wa801nd Firmware -
Tp-link Wdr3500 Firmware -
Tp-link Wdr3600 Firmware -
Tp-link We843n Firmware -
Tp-link Wr1043nd Firmware -
Tp-link Wr1045nd Firmware -
Tp-link Wr740n Firmware -
Tp-link Wr741nd Firmware -
Tp-link Wr749n Firmware -
Tp-link Wr802n Firmware -
Tp-link Wr840n Firmware -
Tp-link Wr841hp Firmware -
Tp-link Wr841n Firmware -
Tp-link Wr842n Firmware -
Tp-link Wr842nd Firmware -
Tp-link Wr845n Firmware -
9.8
CVSSv3
CVE-2020-15420
This vulnerability allows remote malicious users to execute arbitrary code on affected installations of CentOS Web Panel cwp-el7-0.9.8.891. Authentication is not required to exploit this vulnerability. The specific flaw exists within loader_ajax.php. When parsing the line paramet...
Control-webpanel Webpanel 0.9.8.891
9.8
CVSSv3
CVE-2020-15422
This vulnerability allows remote malicious users to execute arbitrary code on affected installations of CentOS Web Panel cwp-e17.0.9.8.923. Authentication is not required to exploit this vulnerability. The specific flaw exists within ajax_mod_security.php. When parsing the archiv...
Control-webpanel Webpanel 0.9.8.923
9.8
CVSSv3
CVE-2020-15425
This vulnerability allows remote malicious users to execute arbitrary code on affected installations of CentOS Web Panel cwp-e17.0.9.8.923. Authentication is not required to exploit this vulnerability. The specific flaw exists within ajax_mod_security.php. The issue results from ...
Control-webpanel Webpanel 0.9.8.923
9.8
CVSSv3
CVE-2020-15426
This vulnerability allows remote malicious users to execute arbitrary code on affected installations of CentOS Web Panel cwp-e17.0.9.8.923. Authentication is not required to exploit this vulnerability. The specific flaw exists within ajax_migration_cpanel.php. When parsing the se...
Control-webpanel Webpanel 0.9.8.923
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
SSTI
CVE-2024-35863
CVE-2024-35910
man-in-the-middle
CVE-2024-35912
CVE-2024-25742
LFI
CVE-2024-32002
CVE-2024-22120
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
NEXT »