Vulnerabilities > Centos Webpanel

DATE CVE VULNERABILITY TITLE RISK
2021-05-18 CVE-2021-31316 SQL Injection vulnerability in Centos-Webpanel Centos web Panel
The unprivileged user portal part of CentOS Web Panel is affected by a SQL Injection via the 'idsession' HTTP POST parameter.
network
low complexity
centos-webpanel CWE-89
critical
10.0
2021-05-18 CVE-2021-31324 Command Injection vulnerability in Centos-Webpanel Centos web Panel
The unprivileged user portal part of CentOS Web Panel is affected by a Command Injection vulnerability leading to root Remote Code Execution.
network
low complexity
centos-webpanel CWE-77
critical
10.0
2020-07-28 CVE-2020-15628 SQL Injection vulnerability in Centos-Webpanel Centos web Panel 0.9.8.923
This vulnerability allows remote attackers to disclose sensitive information on affected installations of CentOS Web Panel cwp-e17.0.9.8.923.
network
low complexity
centos-webpanel CWE-89
7.8
2020-07-28 CVE-2020-15627 SQL Injection vulnerability in Centos-Webpanel Centos web Panel 0.9.8.923
This vulnerability allows remote attackers to disclose sensitive information on affected installations of CentOS Web Panel cwp-e17.0.9.8.923.
network
low complexity
centos-webpanel CWE-89
7.8
2020-07-28 CVE-2020-15626 SQL Injection vulnerability in Centos-Webpanel Centos web Panel 0.9.8.923
This vulnerability allows remote attackers to disclose sensitive information on affected installations of CentOS Web Panel cwp-e17.0.9.8.923.
network
low complexity
centos-webpanel CWE-89
7.8
2020-07-28 CVE-2020-15625 SQL Injection vulnerability in Centos-Webpanel Centos web Panel 0.9.8.923
This vulnerability allows remote attackers to disclose sensitive information on affected installations of CentOS Web Panel cwp-e17.0.9.8.923.
network
low complexity
centos-webpanel CWE-89
7.8
2020-07-28 CVE-2020-15624 SQL Injection vulnerability in Centos-Webpanel Centos web Panel 0.9.8.923
This vulnerability allows remote attackers to disclose sensitive information on affected installations of CentOS Web Panel cwp-e17.0.9.8.923.
network
low complexity
centos-webpanel CWE-89
7.8
2020-07-28 CVE-2020-15623 Exposed Dangerous Method OR Function vulnerability in Centos-Webpanel Centos web Panel 0.9.8.923
This vulnerability allows remote attackers to write arbitrary files on affected installations of CentOS Web Panel cwp-e17.0.9.8.923.
network
low complexity
centos-webpanel CWE-749
critical
10.0
2020-07-28 CVE-2020-15622 SQL Injection vulnerability in Centos-Webpanel Centos web Panel 0.9.8.923
This vulnerability allows remote attackers to disclose sensitive information on affected installations of CentOS Web Panel cwp-e17.0.9.8.923.
network
low complexity
centos-webpanel CWE-89
7.8
2020-07-28 CVE-2020-15621 SQL Injection vulnerability in Centos-Webpanel Centos web Panel 0.9.8.923
This vulnerability allows remote attackers to disclose sensitive information on affected installations of CentOS Web Panel cwp-e17.0.9.8.923.
network
low complexity
centos-webpanel CWE-89
7.8