THREATOPS
THREAT OPSCVEs › CVE-2022-44877

CVE-2022-44877 — CWP Control Web Panel OS Command Injection Vulnerability

CISA KEVExploited: confirmedCWP

CWP Control Web Panel (formerly CentOS Web Panel) contains an OS command injection vulnerability that allows remote attackers to execute commands via shell metacharacters in the login parameter.

Vulnerability details