Control Web Panel Unauthenticated Remote Command Execution
Control Web Panel versions prior to 0.9.8.1147 are vulnerable to unauthenticated OS command injection. Successful exploitation results in
code execution as the root user. The results of the command are not
contained within the HTTP response and the request will block while the
command is running.
https://packetstormsecurity.com/files/170820/control_web_panel_login_cmd_exec.r b.txt
Tue, 31 Jan 2023 17:19:35 GMT
________________________________
--- The information is for inforamtional purposes only.
* Origin: Read us with
http://winpoint.org JID:
rs@captflint.com