Unrated severityNVD Advisory· Published Oct 31, 2019· Updated Aug 5, 2024
CVE-2019-16295
CVE-2019-16295
Description
Stored XSS in filemanager2.php in CentOS-WebPanel.com (aka CWP) CentOS Web Panel 0.9.8.885 exists via the cmd_arg parameter. This can be exploited by a local attacker who supplies a crafted filename within a directory visited by the victim.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2- CentOS-WebPanel.com/CentOS Web Paneldescription
- Range: =0.9.8.885
Patches
Vulnerability mechanics
References
2- packetstormsecurity.com/files/154990/CWP-0.9.8.885-Cross-Site-Scripting.htmlmitrex_refsource_MISC
- centos-webpanel.com/changelog-cwp7mitrex_refsource_CONFIRM
News mentions
0No linked articles in our index yet.