{"uuid": "8dd634b8-e8a1-4b63-94fa-5fcc4d0c0340", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2021-45467", "type": "seen", "source": "https://t.me/DarkWebInformer_CVEAlerts/11635", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2021-45466\n\ud83d\udd25 CVSS Score: N/A\n\ud83d\udd39 Description: In CWP (aka Control Web Panel or CentOS Web Panel) before 0.9.8.1107, attackers can make a crafted request to api/?api=add_server&DHCP= to add an authorized_keys text file in the /resources/ folder.\n\ud83d\udccf Published: 2022-12-26T00:00:00.000Z\n\ud83d\udccf Modified: 2025-04-14T15:45:40.679Z\n\ud83d\udd17 References:\n1. https://control-webpanel.com/changelog\n2. https://octagon.net/blog/2022/01/22/cve-2021-45467-cwp-centos-web-panel-preauth-rce/", "creation_timestamp": "2025-04-14T15:53:36.000000Z"}