Full title: Control Web Panel Unauthenticated Remote Command Execution Exploit 
Category: remote exploits
Platform: linux
Control Web Panel versions prior to 0.9.8.1147 are vulnerable to unauthenticated OS command injection. Successful exploitation results in code execution as the root user. The results of the command are not contained within the HTTP response and the request will block while the command is running.

# 0day.today @ http://0day.today/