Title:CentOS Web Panel 操作系统命令注入漏洞 (CVE-2021-31324) Description:CentOS Web Panel(CWP)是Control Web Panel社区的一款免费的虚拟主机控制面板。 CentOS Web Panel 存在操作系统命令注入漏洞,该漏洞源于非特权用户门户部分受到命令注入漏洞的影响,导致root远程代码执行。
Description
The unprivileged user portal part of CentOS Web Panel is affected by a Command Injection vulnerability leading to root Remote Code Execution.
File Snapshot
id: CVE-2021-31324
info:
name: CentOS Web Panel - OS Command Injection
author: ritikchaddha
s
...
Shenlong Bot has cached this for you
Remarks
1. It is advised to access via the original source first.2. If the original source is unavailable, please email f.jinxu#gmail.com for a local snapshot (replace # with @).3. Shenlong has snapshotted the POC code for you. To support long-term maintenance, please consider donating. Thank you for your support.