Vulnerabilities > Control Webpanel > Webpanel > 0.9.8.1126
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2022-07-07 | CVE-2022-25047 | Use of Insufficiently Random Values vulnerability in Control-Webpanel Webpanel 0.9.8.1126 The password reset token in CWP v0.9.8.1126 is generated using known or predictable values. | 5.9 |
2022-07-07 | CVE-2022-25048 | OS Command Injection vulnerability in Control-Webpanel Webpanel 0.9.8.1126 Command injection vulnerability in CWP v0.9.8.1126 that allows normal users to run commands as the root user. | 9.0 |