7.8 High
AI Score
Confidence
Low
0.119 Low
EPSS
Percentile
95.4%
The βAllow cPanel users to reset their password via emailβ feature in cPanel 9.1.0 build 34 and earlier, including 8.x, allows remote attackers to execute arbitrary code via the user parameter to resetpass.
marc.info/?l=bugtraq&m=107904890724201&w=2
secunia.com/advisories/11111
www.kb.cert.org/vuls/id/831534
www.securityfocus.com/archive/1/357064/2004-03-08/2004-03-14/0
www.securityfocus.com/bid/9848
exchange.xforce.ibmcloud.com/vulnerabilities/15443