← back
CVE-2019-13383

CVE-2019-13383

EPSS 14.2%
In CentOS-WebPanel.com (aka CWP) CentOS Web Panel 0.9.8.846, the Login process allows attackers to check whether a username is valid by reading the HTTP response.
Affected products
n/a · n/a
public PoCs found2
exploitdbwww.exploit-db.com/exploits/47125unverifiedcve_referencepacketstormsecurity.com/files/153667/CentOS-Control-Web-Panel-0.9.8.838-User-Enumeration.htmlunverified
⚠ Public resources, to assess the exposure of systems you control or are authorized to test. Test only with authorization.

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →
References
http://packetstormsecurity.com/files/153667/CentOS-Control-Web-Panel-0.9.8.838-User-Enumeration.htmlhttps://github.com/i3umi3iei3ii/CentOS-Control-Web-Panel-CVE/blob/master/CVE-2019-13383.mdhttps://psirt.global.sonicwall.com/vuln-detail/SNWLID-2019-0010