mirror of
https://github.com/0xMarcio/cve.git
synced 2025-06-01 11:10:36 +00:00
2.1 KiB
2.1 KiB
CVE-2022-44877
Description
login/index.php in CWP (aka Control Web Panel or CentOS Web Panel) 7 before 0.9.8.1147 allows remote attackers to execute arbitrary OS commands via shell metacharacters in the login parameter.
POC
Reference
- http://packetstormsecurity.com/files/170388/Control-Web-Panel-7-Remote-Code-Execution.html
- http://packetstormsecurity.com/files/170820/Control-Web-Panel-Unauthenticated-Remote-Command-Execution.html
- http://packetstormsecurity.com/files/171725/Control-Web-Panel-7-CWP7-0.9.8.1147-Remote-Code-Execution.html
- http://seclists.org/fulldisclosure/2023/Jan/1
- https://gist.github.com/numanturle/c1e82c47f4cba24cff214e904c227386
- https://www.youtube.com/watch?v=kiLfSvc1SYY
Github
- https://github.com/20142995/Goby
- https://github.com/ARPSyndicate/cvemon
- https://github.com/ARPSyndicate/kenzer-templates
- https://github.com/Chocapikk/CVE-2022-44877
- https://github.com/ColdFusionX/CVE-2022-44877-CWP7
- https://github.com/G01d3nW01f/CVE-2022-44877
- https://github.com/Ostorlab/KEV
- https://github.com/Ostorlab/known_exploited_vulnerbilities_detectors
- https://github.com/RicYaben/CVE-2022-44877-LAB
- https://github.com/aneasystone/github-trending
- https://github.com/dkstar11q/CVE-2022-44877
- https://github.com/fardeen-ahmed/Bug-bounty-Writeups
- https://github.com/h00die-gr3y/Metasploit
- https://github.com/hotpotcookie/CVE-2022-44877-white-box
- https://github.com/k0mi-tg/CVE-POC
- https://github.com/komomon/CVE-2022-44877-RCE
- https://github.com/manas3c/CVE-POC
- https://github.com/nomi-sec/PoC-in-GitHub
- https://github.com/numanturle/CVE-2022-44877
- https://github.com/rhymsc/CVE-2022-44877-RCE
- https://github.com/santosomar/kev_checker
- https://github.com/whoforget/CVE-POC
- https://github.com/youwizard/CVE-POC