Design/Logic Flaw

2017-07-1907:29:00

PRIOn knowledge base

www.prio-n.com

5.2 Medium

AI Score

Confidence

High

0.001 Low

EPSS

Percentile

21.9%

JSON

The WHM Upload Locale interface in cPanel before 56.0.51, 58.x before 58.0.52, 60.x before 60.0.45, 62.x before 62.0.27, 64.x before 64.0.33, and 66.x before 66.0.2 has XSS via a locale filename, aka SEC-297.

CPENameOperatorVersion
whmle56.0.50
whmeq58.0.34
whmeq58.0.43
whmeq58.0.19
whmeq58.0.4
whmeq58.0.46
whmeq58.0.27
whmeq58.0.45
whmeq58.0.29
whmeq58.0.24