Lucene search
K

28 matches found

OSV
OSV
•added 2019/08/01 2:15 p.m.•5 views

CVE-2018-20896

cPanel before 71.9980.37 allows code injection in the WHM cPAddons interface SEC-394...

3.9CVSS5.8AI score0.00413EPSS
Exploits0References2
Prion
Prion
•added 2008/05/12 4:20 p.m.•26 views

Cross site scripting

The WHM interface 11.15.0 for cPanel 11.18 before 11.18.4 and 11.22 before 11.22.3 allows remote attackers to bypass XSS protection and inject arbitrary script or HTML via repeated, improperly-ordered "" characters in the 1 issue parameter to scripts2/knowlegebase, 2 user parameter to...

4.3CVSS6.2AI score0.02183EPSS
Exploits3References8Affected Software1
Prion
Prion
•added 2008/05/12 4:20 p.m.•26 views

Cross site request forgery (csrf)

Multiple cross-site request forgery CSRF vulnerabilities in the WHM interface 11.15.0 for cPanel 11.18 before 11.18.4 and 11.22 before 11.22.3 allow remote attackers to perform unauthorized actions as cPanel administrators via requests to cpanel/whm/webmail and other unspecified vectors...

4.3CVSS7.3AI score0.00674EPSS
Exploits2References8Affected Software1
NVD
NVD
•added 2008/05/12 4:20 p.m.•36 views

CVE-2008-2070

The WHM interface 11.15.0 for cPanel 11.18 before 11.18.4 and 11.22 before 11.22.3 allows remote attackers to bypass XSS protection and inject arbitrary script or HTML via repeated, improperly-ordered "" characters in the 1 issue parameter to scripts2/knowlegebase, 2 user parameter to...

4.3CVSS5.9AI score0.02183EPSS
Exploits3References8
Cvelist
Cvelist
•added 2008/05/12 4:0 p.m.•38 views

CVE-2008-2071

Multiple cross-site request forgery CSRF vulnerabilities in the WHM interface 11.15.0 for cPanel 11.18 before 11.18.4 and 11.22 before 11.22.3 allow remote attackers to perform unauthorized actions as cPanel administrators via requests to cpanel/whm/webmail and other unspecified vectors...

7AI score0.00674EPSS
Exploits2References8
Cvelist
Cvelist
•added 2008/05/12 4:0 p.m.•45 views

CVE-2008-2070

The WHM interface 11.15.0 for cPanel 11.18 before 11.18.4 and 11.22 before 11.22.3 allows remote attackers to bypass XSS protection and inject arbitrary script or HTML via repeated, improperly-ordered "" characters in the 1 issue parameter to scripts2/knowlegebase, 2 user parameter to...

5.9AI score0.02183EPSS
Exploits3References8
CVE
CVE
•added 2008/05/12 4:0 p.m.•92 views

CVE-2008-2070

The CVE-2008-2070 entry concerns the WHM interface of cPanel: affected are WHM/cPanel builds around 11.15.0/11.18.x and 11.22.x, where multiple user-supplied inputs (notably issue in scripts2/knowlegebase, user in scripts2/changeip, and search in scripts2/listaccts) permit bypassing XSS protectio...

4.3CVSS5.9AI score0.02183EPSS
Exploits3References8Affected Software1
securityvulns
securityvulns
•added 2008/05/11 12:0 a.m.•76 views

XSS and CSRF vulnerability on Cpanel 11

DESCRIPTION OF THE SOFTWARE cPanel is a hosting automation tool. WHM interface provides access to the heart of the cPanel and WHM package and allows a Server Administrator to simply configure a few options and be on their way to hosting web sites. 2. DESCRIPTION OF THE VULNERABILITY There are...

4.3CVSS0.02183EPSS
Exploits3
Rows per page
Query Builder