CVE-2022-44877

CVSS 9.8 CRITICALEPSS 100.0%● KEVCWE-78

In short

A login page in CWP (Control Web Panel) version 7 allows attackers to run harmful commands on the server by sneaking special characters into the login field. This is critical because it gives attackers full control of the server without needing a valid account.

Technical detail

CWE-78 OS Command Injection in login/index.php allows unauthenticated remote attackers to execute arbitrary system commands through unsanitized shell metacharacters in the login parameter. The vulnerability affects CWP 7.x before 0.9.8.1147 and requires no authentication; successful exploitation grants complete OS-level access to the affected server.

Summary generated and translated by AI from the official description.

login/index.php in CWP (aka Control Web Panel or CentOS Web Panel) 7 before 0.9.8.1147 allows remote attackers to execute arbitrary OS commands via shell metacharacters in the login parameter.

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Affected products

n/a · n/a

public PoCs found — 13

githubgithub.com/numanturle/CVE-2022-44877★ 103 githubgithub.com/komomon/CVE-2022-44877-RCE★ 9 githubgithub.com/hotpotcookie/CVE-2022-44877-white-box★ 6 githubgithub.com/Chocapikk/CVE-2022-44877★ 4 githubgithub.com/ColdFusionX/CVE-2022-44877-CWP7★ 1 githubgithub.com/G01d3nW01f/CVE-2022-44877★ 0 githubgithub.com/rhymsc/CVE-2022-44877-RCE★ 0 githubgithub.com/dkstar11q/CVE-2022-44877★ 0 exploitdbwww.exploit-db.com/exploits/51250unverified cve_referencepacketstormsecurity.com/files/170820/Control-Web-Panel-Unauthenticated-Remote-Command-Execution.htmlunverified cve_referencepacketstormsecurity.com/files/171725/Control-Web-Panel-7-CWP7-0.9.8.1147-Remote-Code-Execution.htmlunverified exploitdbwww.exploit-db.com/exploits/51194unverified cve_referencepacketstormsecurity.com/files/170388/Control-Web-Panel-7-Remote-Code-Execution.htmlunverified

⚠ Public resources, to assess the exposure of systems you control or are authorized to test. Test only with authorization.

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →

References

http://packetstormsecurity.com/files/170388/Control-Web-Panel-7-Remote-Code-Execution.html http://packetstormsecurity.com/files/170820/Control-Web-Panel-Unauthenticated-Remote-Command-Execution.html http://packetstormsecurity.com/files/171725/Control-Web-Panel-7-CWP7-0.9.8.1147-Remote-Code-Execution.html http://seclists.org/fulldisclosure/2023/Jan/1 https://gist.github.com/numanturle/c1e82c47f4cba24cff214e904c227386 https://www.cisa.gov/known-exploited-vulnerabilities-catalog?field_cve=CVE-2022-44877 https://www.youtube.com/watch?v=kiLfSvc1SYY