Main Vulnerability Database Exploits ID:5909 - Exploit for Information disclosure in CentOS Web Panel - CVE-2019-13383

ID:5909 - Exploit for Information disclosure in CentOS Web Panel - CVE-2019-13383

Published: June 17, 2021

Vulnerability identifier: #VU35709

Vulnerability risk: Medium

CVE-ID: CVE-2019-13383

CWE-ID: CWE-200

Exploitation vector: Remote access

Vulnerable software:
CentOS Web Panel

Link to public exploit:

https://www.exploit-db.com/exploits/47125/

Vulnerability description

The vulnerability allows a remote non-authenticated attacker to gain access to sensitive information.

In CentOS-WebPanel.com (aka CWP) CentOS Web Panel 0.9.8.846, the Login process allows attackers to check whether a username is valid by reading the HTTP response.

Remediation

Install update from vendor's website.

ID:5909 - Exploit for Information disclosure in CentOS Web Panel - CVE-2019-13383

Link to public exploit:

Vulnerability description

Remediation

Please verify you're human