cPanel del.html account Variable XSS

2004-03-13T00:00:00
ID OSVDB:4243
Type osvdb
Reporter Sullo(sullo@cirt.net)
Modified 2004-03-13T00:00:00

Description

Vulnerability Description

cPanel contains a flaw that allows a remote cross site scripting attack. This flaw exists because the application does not validate the "ip" variable upon submission to the "del.html" script. This could allow a user to create a specially crafted URL that would execute arbitrary code in a user's browser within the trust relationship between the browser and the server, leading to a loss of integrity.

Solution Description

Currently, there are no known upgrades, patches, or workarounds available to correct this issue.

Short Description

cPanel contains a flaw that allows a remote cross site scripting attack. This flaw exists because the application does not validate the "ip" variable upon submission to the "del.html" script. This could allow a user to create a specially crafted URL that would execute arbitrary code in a user's browser within the trust relationship between the browser and the server, leading to a loss of integrity.

Manual Testing Notes

http://[victim]/frontend/x2/denyip/del.html?ip=<script>alert('Vulnerable')</script>

References:

Vendor URL: http://www.cpanel.net/ Secunia Advisory ID:11244 Other Advisory URL: http://www.cirt.net/advisories/cpanel_xss.shtml