COOEY // HUBcompliance · community · intelligence

FAIL › dossier

Control Web Panel product

2
failure events
0
zero-days
2
RCEs
2
on KEV
0
critical
65
worst shame

Dossier not yet built — the RAG curator builds one for players with ≥2 failure events (factory/dossier.py). The failure history and sentiment below are live.

Failure history 2 events

DateEventSevFlagsShameSummary
2025-11-04 CVE-2025-48703 high ⚡RCE ⌖KEV 65 CWP Control Web Panel (formerly CentOS Web Panel) contains an OS command Injection vulnerability that allows unauthenticated remote code execution via shell metacharacters in the t_total parameter in a filemanager changePerm request. A valid non-root username must be known.
2023-01-17 CVE-2022-44877 high ⚡RCE ⌖KEV 65 CWP Control Web Panel (formerly CentOS Web Panel) contains an OS command injection vulnerability that allows remote attackers to execute commands via shell metacharacters in the login parameter.