CVEs-PoC/2019/CVE-2019-13387.md at main

CalvinBackup/CVEs-PoC

Fork 0

mirror of https://github.com/0xMarcio/cve.git synced 2026-02-12 22:53:11 +00:00

Files

0xMarcio cb00e1339f Update CVE list 2025-09-29 21:09

2025-09-29 21:09:30 +02:00

875 B

Raw Permalink Blame History

CVE-2019-13387

Description

In CentOS-WebPanel.com (aka CWP) CentOS Web Panel 0.9.8.846, Reflected XSS in filemanager2.php (parameter fm_current_dir) allows attackers to steal a cookie or session, or redirect to a phishing website.

POC

Reference

http://packetstormsecurity.com/files/153878/CentOS-Control-Web-Panel-0.9.8.846-Cross-Site-Scripting.html

Github

https://github.com/20142995/nuclei-templates
https://github.com/cyb3r-w0lf/nuclei-template-collection
https://github.com/i3umi3iei3ii/CentOS-Control-Web-Panel-CVE

875 B Raw Permalink Blame History

CVE-2019-13387

Description

POC

Reference

Github

875 B

Raw Permalink Blame History