Vulmon Recent Vulnerabilities Research Posts Trends Blog About Contact
435
VMScore

CVE-2018-18324

Published: 15/10/2018 Updated: 24/01/2023
CVSS v2 Base Score: 4.3 | Impact Score: 2.9 | Exploitability Score: 8.6
CVSS v3 Base Score: 6.1 | Impact Score: 2.7 | Exploitability Score: 2.8
VMScore: 435
Vector: AV:N/AC:M/Au:N/C:N/I:P/A:N
Subscribe to Control-webpanel

Vulnerability Summary

CentOS-WebPanel.com (aka CWP) CentOS Web Panel 0.9.8.480 has XSS via the admin/fileManager2.php fm_current_dir parameter, or the admin/index.php module, service_start, service_fullstatus, service_restart, service_stop, or file (within the file_editor) parameter.

Vulnerability Trend

Vulnerable Product Search on Vulmon Subscribe to Product

control-webpanel webpanel 0.9.8.480

Exploits

Exploit DB: Centos Web Panel 0.9.8.480 - Multiple Vulnerabilities
# Exploit Title: Centos Web Panel 098480 Multiple Vulnerabilities # Exploit Author: Seccops - Siber Güvenlik Hizmetleri (seccopscom) # Vendor Homepage: centos-webpanelcom/ # Software Link: centos-webpanelcom/system-requirements # Version: 098480 # Tested on: Centos 7 # Vulnerability Types: Command Injection, Local Fi ...

References

CWE-79https://seccops.com/centos-web-panel-0-9-8-480-multiple-vulnerabilities/https://0day.today/exploit/31304https://www.exploit-db.com/exploits/45610/https://nvd.nist.govhttps://www.exploit-db.com/exploits/45610/
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2020-4463CVE-2024-3400deserializationCVE-2024-21788CVE-2023-42433CVE-2024-21841CVE-2024-22095local file inclusionmemory leak
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook