cPanel before 68.0.27 allows attackers to read zone information because a world-readable archive is created by the archive_sync_zones script (SEC-355).
CPE | Name | Operator | Version |
---|---|---|---|
cpanel | ge | 67.9999.64 | |
cpanel | lt | 68.0.27 | |
cpanel | ge | 61.9999.55 | |
cpanel | lt | 62.0.39 | |
cpanel | ge | 65.9999.38 | |
cpanel | lt | 66.0.35 |