Centos-webpanel Centos Web Panel — known CVE vulnerabilities
Every CVE whose affected-product data names Centos-webpanel Centos Web Panel, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (6)
CVE-2020-15609 — CVSS 9.8 (critical): This vulnerability allows remote attackers to execute arbitrary code on affected installations of CentOS Web Panel cwp-e17.0.9.8.923…
CVE-2019-13386 — CVSS 8.8 (high): In CentOS-WebPanel.com (aka CWP) CentOS Web Panel 0.9.8.846, a hidden action=9 feature in filemanager2.php allows attackers to execute a…
CVE-2019-14245 — CVSS 6.5 (medium): In CentOS-WebPanel.com (aka CWP) CentOS Web Panel 0.9.8.851, an insecure object reference allows an attacker to delete databases (such as…
CVE-2019-14246 — CVSS 6.5 (medium): In CentOS-WebPanel.com (aka CWP) CentOS Web Panel 0.9.8.851, an insecure object reference allows an attacker to discover phpMyAdmin…
CVE-2019-10261 — CVSS 4.8 (medium): CentOS Web Panel (CWP) 0.9.8.789 is vulnerable to Stored/Persistent XSS for the "Name Server 1" and "Name Server 2" fields via a "DNS…
CVE-2019-10893 — CVSS 4.8 (medium): CentOS-WebPanel.com (aka CWP) CentOS Web Panel 0.9.8.793 (Free/Open Source Version) and 0.9.8.753 (Pro) is vulnerable to Stored/Persistent…