Vulnerabilities > CVE-2019-14723 - Unspecified vulnerability in Control-Webpanel Webpanel 0.9.8.851

CVSS 4.3 - MEDIUM

Attack vector

NETWORK

Attack complexity

LOW

Privileges required

LOW

Confidentiality impact

NONE

Integrity impact

LOW

Availability impact

NONE

network

low complexity

control-webpanel

NVD

Published: 2019-09-10

Updated: 2023-01-24

Summary

In CentOS-WebPanel.com (aka CWP) CentOS Web Panel 0.9.8.851, an insecure object reference allows an attacker to delete a victim's e-mail account via an attacker account.

Vulnerable Configurations

Part	Description	Count
Application	Control-Webpanel Control Webpanel Webpanel 0.9.8.851	1

Packetstorm

data source	https://packetstormsecurity.com/files/download/154404/cwp098851-removeuser.txt
id	PACKETSTORM:154404
last seen	2019-09-10
published	2019-09-09
reporter	Pongtorn Angsuchotmetee
source	https://packetstormsecurity.com/files/154404/Control-Web-Panel-0.9.8.851-Privilege-Escalation.html
title	Control Web Panel 0.9.8.851 Privilege Escalation

Summary

Vulnerable Configurations

Packetstorm

References