3955 matches found
CVE-2006-6523
Cross-site scripting XSS vulnerability in mail/manage.html in BoxTrapper in cPanel 11 allows remote attackers to inject arbitrary web script or HTML via the account parameter...
CVE-2006-6523
The CVE-2006-6523 entry concerns an XSS vulnerability in BoxTrapper’s mail/manage.html for cPanel 11, exploitable via the account parameter. The affected component is BoxTrapper (cPanel 11) and the root cause is cross-site scripting through unvalidated input in the account parameter, allowing inj...
mxBB Module mx_profilecp 0.91 Remote File Include Vulnerability
No description provided by source. | \ | / | \ \ / | | | | | \ / | \ \ / / | | | | '| | |/| |/ \ / / \ / / | | '| | | / | | || | | | | | | | | \ / | | | | || \ \ |/|| || ||,//\ / ||| ,|/...
cPanel 11 BoxTrapper - Manage.HTML Cross-Site Scripting
cPanel 11 BoxTrapper - Manage.HTML Cross-Site Scripting source: https://www.securityfocus.com/bid/21497/info cPanel BoxTrapper is prone to a cross-site scripting vulnerability because the application fails to properly sanitize user-supplied input. An attacker may leverage this issue to have...
cPanel Web Hosting Manager 3.1 - Multiple Cross-Site Scripting Vulnerabilities
cPanel Web Hosting Manager 3.1 - Multiple Cross-Site Scripting Vulnerabilities source: https://www.securityfocus.com/bid/21498/info Web Hosting Manager is prone to multiple cross-site scripting vulnerabilities because the application fails to properly sanitize user-supplied input. An attacker may...
[Aria-Security Team] cPanel 11 pops.html Cross-Site Scripting
Aria-Security Team Advisory www.Aria-security.Com For English www.Aria-Security.net For Persian Original Advisory: http://www.aria-security.com/forum/showthread.php?t=68 ----------------------------------------------------------- Vulnerability: cPanel Version 11 Pops.Html Cross-Site Scripting PoC...
[Aria-Security Team] cPanel BoxTrapper Cross Site Scripting
Aria-Security Team Advisory www.Aria-security.Com For English www.Aria-Security.net For Persian Original Advisory http://www.aria-security.com/forum/showthread.php?t=67 ----------------------------------------------------------- Software: cPanel Version 11 BoxTrapper Method: Cross Site Scripting...
aria-cpanel.txt
Aria-Security Team Advisory Original Advisory: http://www.aria-security.com/forum/showthread.php?t=68 ----------------------------------------------------------- Vulnerability: cPanel Version 11 Pops.Html Cross-Site Scripting PoC: http://target:2082/mail/pops.html?domain=XSS Contact:...
cPanel 11 BoxTrapper - Manage.HTML Cross-Site Scripting
source: https://www.securityfocus.com/bid/21497/info cPanel BoxTrapper is prone to a cross-site scripting vulnerability because the application fails to properly sanitize user-supplied input. An attacker may leverage this issue to have arbitrary script code execute in the browser of an unsuspecti...
cPanel Web Hosting Manager 3.1 - Multiple Cross-Site Scripting Vulnerabilities
source: https://www.securityfocus.com/bid/21498/info Web Hosting Manager is prone to multiple cross-site scripting vulnerabilities because the application fails to properly sanitize user-supplied input. An attacker may leverage these issues to have arbitrary script code execute in the browser of ...
[Aria-Security.Net] Web Hosting Control Panel - cPanel 11 Multiple Cross-Site Scripting Vulnerabilites
Aria-Security Team Advisory www.Aria-security.Com For English www.Aria-Security.net For Persian Original Advisory: http://www.aria-security.com/forum/showthread.php?t=57 ----------------------------------------------------------- Software: CPanel Tested On CPanel 11 Beta at cpanel.net Poc:...
CVE-2006-6198
Multiple cross-site scripting XSS vulnerabilities in cPanel WebHost Manager WHM 3.1.0 allow remote authenticated users to inject arbitrary web script or HTML via the 1 email parameter to a scripts2/dochangeemail, the 2 supporturl parameter to b cgi/addonconfigsupport.cgi, the 3 pkg parameter to c...
CVE-2006-6198
Multiple cross-site scripting XSS vulnerabilities in cPanel WebHost Manager WHM 3.1.0 allow remote authenticated users to inject arbitrary web script or HTML via the 1 email parameter to a scripts2/dochangeemail, the 2 supporturl parameter to b cgi/addonconfigsupport.cgi, the 3 pkg parameter to c...
CVE-2006-6198
CVE-2006-6198 documents multiple XSS vulnerabilities in cPanel WebHost Manager (WHM) 3.1.0. The flaws enable remote authenticated users to inject arbitrary web script or HTML via several parameters in the web UI: (1) email in scripts2/dochangeemail, (2) supporturl in cgi/addon_configsupport.cgi, ...
aria-cpanel11beta.txt
Aria-Security Team Advisory Original Advisory: http://www.aria-security.com/forum/showthread.php?t=44 ----------------------------------------------------------- Software: CPanel Tested On CPanel 11 Beta Poc: http://target:2082/frontend/x/files/fileop.html?opdir=PATH&opfile=FILENAME&fileop=XSS...
cPanel WebHost Manager 3.1 - editzone?domain Cross-Site Scripting
cPanel WebHost Manager 3.1 - editzone?domain Cross-Site Scripting source: https://www.securityfocus.com/bid/21288/info WebHost Manager is prone to multiple cross-site scripting vulnerabilities because it fails to properly sanitize user-supplied input. An attacker may leverage these issues to have...
cPanel WebHost Manager 3.1 - domts2?domain Cross-Site Scripting
cPanel WebHost Manager 3.1 - domts2?domain Cross-Site Scripting source: https://www.securityfocus.com/bid/21288/info WebHost Manager is prone to multiple cross-site scripting vulnerabilities because it fails to properly sanitize user-supplied input. An attacker may leverage these issues to have...
cPanel WebHost Manager 3.1 - editpkg?pkg Cross-Site Scripting
cPanel WebHost Manager 3.1 - editpkg?pkg Cross-Site Scripting source: https://www.securityfocus.com/bid/21288/info WebHost Manager is prone to multiple cross-site scripting vulnerabilities because it fails to properly sanitize user-supplied input. An attacker may leverage these issues to have...
cPanel WebHost Manager 3.1 - dochangeemail?email Cross-Site Scripting
cPanel WebHost Manager 3.1 - dochangeemail?email Cross-Site Scripting source: https://www.securityfocus.com/bid/21288/info WebHost Manager is prone to multiple cross-site scripting vulnerabilities because it fails to properly sanitize user-supplied input. An attacker may leverage these issues to...
cPanel WebHost Manager 3.1 - addon_configsupport.cgi?supporturl Cross-Site Scripting
cPanel WebHost Manager 3.1 - addonconfigsupport.cgi?supporturl Cross-Site Scripting source: https://www.securityfocus.com/bid/21288/info WebHost Manager is prone to multiple cross-site scripting vulnerabilities because it fails to properly sanitize user-supplied input. An attacker may leverage...