Recent Posts
1
Updates / Re: Will someone update the Changelog
« Last post by Starburst on Today at 01:58:12 AM »The IMAP module was removed from the PHP core by The PHP Group (aka the group who writes PHP, php.net).
You now have to manually install it from PECL.
You now have to manually install it from PECL.
2
CentOS-WebPanel Bugs / Re: problem to CWP->CWP Migration
« Last post by overseer on November 24, 2025, 10:47:32 PM »What does the running log show in the window (or check the migration log)?
3
CentOS-WebPanel Bugs / Re: problem to CWP->CWP Migration
« Last post by geeth on November 24, 2025, 08:32:12 PM »I am attempting to migrate user accounts from CWP to CWP. Unfortunately, only 7 out of 9 accounts are syncing. The other 2 accounts are not appearing in the remote server list. If someone can help with this issue would be appreciated.
4
Updates / Re: Will someone update the Changelog
« Last post by ~Q~ on November 24, 2025, 07:04:05 PM »You can update to PHP 8.4.x manually, but the problem is some modules have been retired by their creators, like IMAP.
So PHP 8.4 is running into their own support problems right now.QuoteThe IMAP extension was moved out of PHP core because the underlying c-client library it relied on was no longer being maintained
In this day and age you would think that someone from the original devs / maintainers of the IMAP module would fork it and have Ai maintain it.
Maybe it was an internal community issue that made the project end.
5
Updates / Re: ConfigServer replacement?
« Last post by ~Q~ on November 24, 2025, 06:55:32 PM »BUMP!
Does anyone know how to get the live log viewer module back?
Does anyone know how to get the live log viewer module back?
6
Information / Re: I can't access my post history in this forum...
« Last post by ~Q~ on November 24, 2025, 06:43:24 PM »This is not me crapping on CWP this is a customer of over half a decade giving some feedback.
It is telling me that submission of a post / reply is not secure.
It has been hit and miss for months accessing "forum.centos-webpanel.com".
Many times it fails to load.
Searching for solutions re CWP issues the forum ranks high in search results....
With Cpanel asking $26.99 / month, one would think CWP HQ's would put their best foot forward and push to capture more market share and that would include making the forum high availability IMHO..
According to W3Techs, a web technology survey company, the Control Web Panel is used by less than 0.1% of all websites whose web panel is known. As a premium version of this software, CWPpro's individual share is even smaller. Usage statistics and market share of Control Web Panel for websites
https://w3techs.com/technologies/details/wp-centoswebpanel/
In a way the market share makes CWP Pro niche and less on hackers radar.... Security through obscurity.
With Hestia Control Panel and Ansible being opensource they are on my radar.
That being said I have become accustomed to using CWP Pro and have been using it since March of 2020 on a handful of servers, and have had Managed Support contracts with CWP and honestly I turned to getting support from CWP developers outside of CWP (support.centos-webpanel.com).
To be fair though I think two A Holes (one in particular) are no longer working / doing tech support @CWP.
Maybe now that the CentOS forking debacle is over and AlmaLinux / Rocky 9.X version of CWP to be fully debugged and vetted they might have the time and to devote to refreshing the forum, their websites and the actual CWP server panel GUI. <--- It will not hurt at all for your bottom line at all :-)
Like I said this is just some honest feed back from a long term paying customer.
It is telling me that submission of a post / reply is not secure.
It has been hit and miss for months accessing "forum.centos-webpanel.com".
Many times it fails to load.
Searching for solutions re CWP issues the forum ranks high in search results....
With Cpanel asking $26.99 / month, one would think CWP HQ's would put their best foot forward and push to capture more market share and that would include making the forum high availability IMHO..
According to W3Techs, a web technology survey company, the Control Web Panel is used by less than 0.1% of all websites whose web panel is known. As a premium version of this software, CWPpro's individual share is even smaller. Usage statistics and market share of Control Web Panel for websites
https://w3techs.com/technologies/details/wp-centoswebpanel/
In a way the market share makes CWP Pro niche and less on hackers radar.... Security through obscurity.
With Hestia Control Panel and Ansible being opensource they are on my radar.
That being said I have become accustomed to using CWP Pro and have been using it since March of 2020 on a handful of servers, and have had Managed Support contracts with CWP and honestly I turned to getting support from CWP developers outside of CWP (support.centos-webpanel.com).
To be fair though I think two A Holes (one in particular) are no longer working / doing tech support @CWP.
Maybe now that the CentOS forking debacle is over and AlmaLinux / Rocky 9.X version of CWP to be fully debugged and vetted they might have the time and to devote to refreshing the forum, their websites and the actual CWP server panel GUI. <--- It will not hurt at all for your bottom line at all :-)
Like I said this is just some honest feed back from a long term paying customer.
7
Updates / Re: ConfigServer replacement?
« Last post by ~Q~ on November 24, 2025, 06:06:25 PM »I found a glitch. @ /admin/index.php?module=csfofficial
There is no more
ConfigServer Scripts
ConfigServer Firewall
There is just a bank page with this header / title "csfofficial"
Log viewer and firewall tools are missng.
Has anyone else found this as well and if so is there a fix or is it lost without dev.configserver.com ?
There is no more
ConfigServer Scripts
ConfigServer Firewall
There is just a bank page with this header / title "csfofficial"
Log viewer and firewall tools are missng.
Has anyone else found this as well and if so is there a fix or is it lost without dev.configserver.com ?
8
Updates / Re: AL 9.6, I have info about 240 updates
« Last post by Starburst on November 23, 2025, 11:34:42 PM »It's an encrypted file, so I can see how/what is being run. 
I have contact higher powers...
I have contact higher powers...
9
CentOS-WebPanel Bugs / Re: [CRITICAL] Multiple CWP Servers Infected – Arbitrary PHP Code Execution via Publ
« Last post by Starburst on November 23, 2025, 10:54:55 PM »CWP 0.9.8.1218 has this original bug fixed for a long time with the File Manager.
What you posted in a WordPress path.
Simple fix, don't use WordPress, or use a security plugin.
Also secure you PHP.ini under disable_functions =
If your not sure how to secure a server or clean one after an attack, you might want to think about hiring a sys admin.
What you posted in a WordPress path.
Simple fix, don't use WordPress, or use a security plugin.
Also secure you PHP.ini under disable_functions =
If your not sure how to secure a server or clean one after an attack, you might want to think about hiring a sys admin.
10
CentOS-WebPanel Bugs / Re: [CRITICAL] Multiple CWP Servers Infected – Arbitrary PHP Code Execution via Publ
« Last post by derak29 on November 23, 2025, 02:48:54 PM »My wordpress wibsites also infeted. And other websites non worpress also. Replaced index.php, added licelic.c" backup.c defauit.php. I found admin accounts in database WP-user wpadmin@volovmart.ru. I dont know how its happened. But i think it is Panel hacked because it is not effect only WordPress CMS. Im using CWP pro.Hello,
We're encountering the same situation on one of our servers.
While we're actively performing cleanup operations, the critical question remains: Has this vulnerability truly been resolved by the "silent patch"?
Do you have any informations about when end what version of the patch/update ?
Best regards,I have the same problem. My VPS are infected.
Im using CWPpro version: 0.9.8.1218 and Rocky Linux release 9.5
After the intrusion i have problems with SEO, google results display titles from other sources.
My websites traffic has plummeted in the last few days because of this change. When I type site:mysomain.tld into Google, I see that the results point to my websites, but the text is different.
Does anyone else have this problem? Do you know how to fix it? How did you manage to change it? I've already submitted sitemaps to Google Search Console, but I'm not sure if it will work.
First thing to do is renaming /usr/local/cwpsrv/var/services/user_files/modules/filemanager.php as /usr/local/cwpsrv/var/services/user_files/modules/filemanager.php.disabled
Then follow the messages sent by @pedromidiasf and me at page 5 to page 7. You will see the names of the malicious files dropped by attackers.
What exploiters are capable of is equal to filemanager at the start and this might not seem worrying. But then they take full advantage of PHP so if they want to remove whole of your files, they can and they can redirect your visitors to other websites.
If I was the one whos using this exploit I could convert this to a DDoS tool by redirecting every visitor to the website that I want to cause DoS. So, there is no limit, they can do anything they want and every IT admin should take this seriously.
Hi friend im still fighting for fix it. Disabling filemanager temporarily solution. My sites traffic growing. I deleted all infected files. Enabled Mo sec rules. Scanned all wordpress websites with wordfence. But still upload available over POST i see in logi every 2 days/ My index files on my webpages replacing to hacker files. I found folders with permission 777 in my server. Sadly CWP havent reinstall or uninstall solution for such as case for fix hacked files.
