In CentOS-WebPanel.com (aka CWP) CentOS Web Panel 0.9.8.840, File and Directory Information Exposure in filemanager allows malicious users to enumerate users and check for active users of the application by reading /tmp/login.log.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
control-webpanel webpanel 0.9.8.840 |