3955 matches found
cPanel and WHM 11.25 - failurl HTTP Response Splitting
cPanel and WHM 11.25 - failurl HTTP Response Splitting source: https://www.securityfocus.com/bid/37902/info cPanel and WHM is prone to an HTTP response-splitting vulnerability. Attackers can leverage this issue to influence or misrepresent how web content is served, cached, or interpreted. This...
cPanel - HTTP Response Splitting
Recognize-Security - cPanel HTTP Response Splitting Vulnerability ----------------------------------------------------------------- Security Advisory by Trancer January 21 2010 http://www.rec-sec.com "Hacking, however, is an art, not a science." Vendor ------ cPanel Inc. - http://www.cpanel.net...
cPanel and WHM 11.25 - 'failurl' HTTP Response Splitting
source: https://www.securityfocus.com/bid/37902/info cPanel and WHM is prone to an HTTP response-splitting vulnerability. Attackers can leverage this issue to influence or misrepresent how web content is served, cached, or interpreted. This could aid in various attacks that try to entice client...
cPanel fileop参数跨站脚本漏洞
BUGTRAQ ID: 37394 cPanel是基于Web的工具,用于自动化控制网站和服务器。 cPanel没有正确地过滤提交给frontend/x3/files/fileop.html的fileop参数便返回给了用户,远程攻击者可以通过提交恶意参数请求执行跨站脚本攻击,在用户浏览器会话中执行任意代码。 cPanel 11.x 厂商补丁: cPanel ------ 目前厂商还没有提供补丁或者升级程序,我们建议使用此软件的用户随时关注厂商的主页以获取最新版本: http://www.cpanel.net...
Cpanel 11 Cross Site Scripting
----------------------------------------------------------- Cpanel 11 Xss Exploit ----------------------------------------------------------- + Author : RENO + Email : [email protected] + Site : www.vxx9.cc + Team : SauDi ViRuS TeaM Hey ... This is how you do it :...
cPanel 11.x - fileop Multiple Cross-Site Scripting Vulnerabilities
cPanel 11.x - fileop Multiple Cross-Site Scripting Vulnerabilities source: https://www.securityfocus.com/bid/37394/info cPanel is prone to multiple cross-site scripting vulnerabilities because the application fails to sufficiently sanitize user-supplied input An attacker may leverage these issues...
Cpanel 11 Xss
No description provided by source. ----------------------------------------------------------- Cpanel 11 Xss Exploit ----------------------------------------------------------- + Author : RENO + Email : [email protected] + Site : www.vxx9.cc + Team : SauDi ViRuS TeaM Hey ... This is how you do it :...
cPanel 11.x - 'fileop' Multiple Cross-Site Scripting Vulnerabilities
source: https://www.securityfocus.com/bid/37394/info cPanel is prone to multiple cross-site scripting vulnerabilities because the application fails to sufficiently sanitize user-supplied input An attacker may leverage these issues to execute arbitrary script code in the browser of an unsuspecting...
Path traversal
Absolute path traversal vulnerability in the Disk Usage module frontend/x/diskusage/index.html in cPanel 11.18.3 allows remote attackers to list arbitrary directories via the showtree parameter...
CVE-2008-7142
Absolute path traversal vulnerability in the Disk Usage module frontend/x/diskusage/index.html in cPanel 11.18.3 allows remote attackers to list arbitrary directories via the showtree parameter...
CVE-2008-7142
Absolute path traversal vulnerability in the Disk Usage module frontend/x/diskusage/index.html in cPanel 11.18.3 allows remote attackers to list arbitrary directories via the showtree parameter...
CVE-2008-7142
CVE-2008-7142 describes an absolute path traversal in the Disk Usage module of cPanel (frontend/x/diskusage/index.html) on version 11.18.3. By manipulating the showtree parameter, remote attackers can list arbitrary directories. The provided documents confirm the vulnerable component and the natu...
CVE-2008-6926
Directory traversal vulnerability in autoinstall4imagesgalleryupgrade.php in the Fantastico De Luxe Module for cPanel allows remote attackers to include and execute arbitrary local files via directory traversal sequences in the scriptpathshow parameter in a GoAhead action. NOTE: this issue only...
Cross site scripting
Multiple cross-site scripting XSS vulnerabilities in autoinstall4imagesgalleryupgrade.php in the Fantastico De Luxe Module for cPanel allow remote attackers to inject arbitrary web script or HTML via the 1 localapp, 2 updatedir, 3 scriptpathshow, 4 domainshow, 5 thispage, 6 thisapp, and 7...
CVE-2008-6927
Multiple cross-site scripting XSS vulnerabilities in autoinstall4imagesgalleryupgrade.php in the Fantastico De Luxe Module for cPanel allow remote attackers to inject arbitrary web script or HTML via the 1 localapp, 2 updatedir, 3 scriptpathshow, 4 domainshow, 5 thispage, 6 thisapp, and 7...
CVE-2008-6927
Multiple cross-site scripting XSS vulnerabilities in autoinstall4imagesgalleryupgrade.php in the Fantastico De Luxe Module for cPanel allow remote attackers to inject arbitrary web script or HTML via the 1 localapp, 2 updatedir, 3 scriptpathshow, 4 domainshow, 5 thispage, 6 thisapp, and 7...
CVE-2008-6926
Directory traversal vulnerability in autoinstall4imagesgalleryupgrade.php in the Fantastico De Luxe Module for cPanel allows remote attackers to include and execute arbitrary local files via directory traversal sequences in the scriptpathshow parameter in a GoAhead action. NOTE: this issue only...
CVE-2008-6927
The CVE-2008-6927 entry describes multiple cross-site scripting (XSS) vulnerabilities in autoinstall4imagesgalleryupgrade.php of the Fantastico De Luxe Module for cPanel. An attacker can inject arbitrary web script or HTML through the parameters (localapp, updatedir, scriptpath_show, domain_show,...
CVE-2008-6926
CVE-2008-6926 affects the Fantastico De Luxe Module for cPanel. Affected component: autoinstall4imagesgalleryupgrade.php. Root cause: directory traversal via the scriptpath_show parameter in a GoAhead action, enabling remote attackers to include and execute arbitrary local files. Impact: potentia...
SmilieScript 1.0 SQL Injection
======================================================= +++++++++++++++++++ information +++++++++++++++++++++++ ======================================================= + Script :SmilieScript ======================================================= +++++++++++++++++++++++ Exploit...