ID:5939 - Exploit for Cross-site scripting in CentOS Web Panel - CVE-2019-10261

CSH
CYBERSECURITY HELP
Sign In REGISTER
 
Main Vulnerability Database Exploits ID:5939 - Exploit for Cross-site scripting in CentOS Web Panel - CVE-2019-10261

ID:5939 - Exploit for Cross-site scripting in CentOS Web Panel - CVE-2019-10261

Published: June 17, 2021


Vulnerability identifier: #VU36031
Vulnerability risk: Low
CVE-ID: CVE-2019-10261
CWE-ID: CWE-79
Exploitation vector: Remote access
Vulnerable software:
CentOS Web Panel

Link to public exploit:


Vulnerability description

The vulnerability allows a remote privileged user to read and manipulate data.

CentOS Web Panel (CWP) 0.9.8.789 is vulnerable to Stored/Persistent XSS for the "Name Server 1" and "Name Server 2" fields via a "DNS Functions" "Edit Nameservers IPs" action.


Remediation

Install update from vendor's website.