Browse all 4 CVE security advisories affecting Control Web Panel. AI-powered Chinese analysis, POCs, and references for each vulnerability.
Control Web Panel serves as a server management interface for Linux-based systems, enabling administrators to configure hosting environments and server settings through a web-based dashboard. Historically, the panel has been susceptible to multiple remote code execution vulnerabilities, cross-site scripting flaws, and privilege escalation issues, as evidenced by its four recorded CVEs. Security researchers have identified authentication bypass weaknesses and insecure default configurations that could allow unauthorized access. While no major public security incidents have been widely documented, the consistent discovery of critical vulnerabilities in the panel's codebase suggests potential risks for organizations relying on this management tool without proper hardening and regular updates.
| CVE ID | Title | CVSS | Severity | Published |
|---|---|---|---|---|
| CVE-2023-42123 | Control Web Panel mysql_manager Command Injection Remote Code Execution Vulnerability — Control Web PanelCWE-78 | 8.8 | - | 2024-05-03 |
| CVE-2023-42122 | Control Web Panel wloggui Command Injection Local Privilege Escalation Vulnerability — Control Web PanelCWE-78 | 7.8 | - | 2024-05-03 |
| CVE-2023-42121 | Control Web Panel Missing Authentication Remote Code Execution Vulnerability — Control Web PanelCWE-306 | 9.8 | - | 2024-05-03 |
| CVE-2023-42120 | Control Web Panel dns_zone_editor Command Injection Remote Code Execution Vulnerability — Control Web PanelCWE-78 | 8.8 | - | 2024-05-03 |
This page lists every published CVE security advisory associated with Control Web Panel. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.