cve/CVE-2019-13387.md at e67cd2fdb0a3b693c8a19c46acadbde4fe3ee9dd

admin/cve

mirror of https://github.com/0xMarcio/cve.git synced 2025-12-16 20:27:21 +00:00

0xMarcio 48a00929ac Removed duplicates

2024-06-18 02:51:15 +02:00

Description

In CentOS-WebPanel.com (aka CWP) CentOS Web Panel 0.9.8.846, Reflected XSS in filemanager2.php (parameter fm_current_dir) allows attackers to steal a cookie or session, or redirect to a phishing website.

POC

Reference

http://packetstormsecurity.com/files/153878/CentOS-Control-Web-Panel-0.9.8.846-Cross-Site-Scripting.html

Github

https://github.com/i3umi3iei3ii/CentOS-Control-Web-Panel-CVE

758 B Raw Blame History

CVE-2019-13387

Description

POC

Reference

Github

758 B

Raw Blame History