3955 matches found
cPanel 10.8.x - cpwrap via MySQLAdmin Privilege Escalation
!/usr/bin/perl -w 10/01/06 - cPanel if/REMOTEUSER/ die "$cpwrap is patched.\n"; close CPWRAP; open STRICT, "strict.pm" or die "Can't open strict.pm: $!\n"; print STRICT "$e = "int mainsetreuid0,0;setregid0,0;system\\\"/bin/bash\\\";";\n"; print STRICT "system"/bin/echo -n...
cPanel 10.8.x - cpwrap via MySQLAdmin Privilege Escalation
cPanel 10.8.x - cpwrap via MySQLAdmin Privilege Escalation !/usr/bin/perl -w 10/01/06 - cPanel if/REMOTEUSER/ die "$cpwrap is patched.\n"; close CPWRAP; open STRICT, "strict.pm" or die "Can't open strict.pm: $!\n"; print STRICT "$e = "int...
cPanel <= 10.8.x (cpwrap via mysqladmin) Local Root Exploit
Exploit for linux platform in category local exploits =========================================================== cPanel if/REMOTEUSER/ die "$cpwrap is patched.\n"; close CPWRAP; open STRICT, "strict.pm" or die "Can't open strict.pm: $!\n"; print STRICT "$e = "int...
cPanel <= 10.8.x (cpwrap via mysqladmin) Local Root Exploit
No description provided by source. !/usr/bin/perl -w 10/01/06 - cPanel = 10.8.x cpwrap root exploit via mysqladmin use strict; haha oh wait.. my $cpwrap = "/usr/local/cpanel/bin/cpwrap"; my $mysqlwrap = "/usr/local/cpanel/bin/mysqlwrap"; my $pwd = pwd; chomp $pwd; $ENV'PERL5LIB' = "$pwd"; if ! -x...
CVE-2006-5014
Unspecified vulnerability in cPanel before 10.9.0 12 Tree allows remote authenticated users to gain privileges via unspecified vectors in 1 mysqladmin and 2 hooksadmin...
CVE-2006-5014
CVE-2006-5014 affects cPanel prior to version 10.9.0. The vulnerability allows remote authenticated users to gain privileges through unspecified vectors in (1) mysqladmin and (2) hooksadmin. Root cause details are not explicitly provided in the documents, and exploit information is not included. ...
CVE-2006-5014
Unspecified vulnerability in cPanel before 10.9.0 12 Tree allows remote authenticated users to gain privileges via unspecified vectors in 1 mysqladmin and 2 hooksadmin...
CVE-2006-5014
Unspecified vulnerability in cPanel before 10.9.0 12 Tree allows remote authenticated users to gain privileges via unspecified vectors in 1 mysqladmin and 2 hooksadmin...
PT-2006-5755 · Cpanel · Cpanel
Name of the Vulnerable Software and Affected Versions: cPanel versions prior to 10.9.0 Description: The issue allows remote authenticated users to gain privileges via unspecified vectors in 1 mysqladmin and 2 hooksadmin. Recommendations: For versions prior to 10.9.0, update to version 10.9.0 or...
cPanel 5-10 - SUID Wrapper Privilege Escalation
cPanel 5-10 - SUID Wrapper Privilege Escalation source: https://www.securityfocus.com/bid/20163/info cPanel is prone to a remote privilege-escalation vulnerability. A remote attacker can exploit this issue to gain administrative access to the affected application. This may lead to other attacks...
cPanel 5-10 - SUID Wrapper Privilege Escalation
source: https://www.securityfocus.com/bid/20163/info cPanel is prone to a remote privilege-escalation vulnerability. A remote attacker can exploit this issue to gain administrative access to the affected application. This may lead to other attacks. cPanel Sorry Safe-mode Is On Script Not Work On...
cpanel10xss.txt
C P A N E L 1 0 Preth00nker at gmail dot com BY PRETH00NKER http://mexhackteam.org special dedication for my friends of: introduction Preth00nker was discovering some news vulnerabilities in cpanel 10. Cite: cPanel allows domain owners to manage and monitor their web site. This easy to use...
CVE-2006-4293
Multiple cross-site scripting XSS vulnerabilities in cPanel 10 allow remote attackers to inject arbitrary web script or HTML via the 1 dir parameter in dohtaccess.html, or the 2 file parameter in a editit.html or b showfile.html...
CVE-2006-4293
CVE-2006-4293 describes multiple cross-site scripting (XSS) vulnerabilities in cPanel 10 that allow remote attackers to inject arbitrary web script or HTML via the dir parameter in dohtaccess.html or the file parameter in editit.html or showfile.html. The affected component is cPanel 10; the root...
CVE-2006-4293
Multiple cross-site scripting XSS vulnerabilities in cPanel 10 allow remote attackers to inject arbitrary web script or HTML via the 1 dir parameter in dohtaccess.html, or the 2 file parameter in a editit.html or b showfile.html...
Multiple xxs cPanel 10
Multiple cross site script C P A N E L 1 0 Preth00nker at gmail dot com BY PRETH00NKER http://mexhackteam.org special dedication for my friends of: http://www.elhacker.net introduction Preth00nker was discovering some news vulnerabilities in cpanel 10. Cite: cPanel allows domain owners to manage...
cPanel 10.x - showfile.html?File Cross-Site Scripting
cPanel 10.x - showfile.html?File Cross-Site Scripting source: https://www.securityfocus.com/bid/19624/info cPanel is prone to multiple cross-site scripting vulnerabilities. These issues are due to a lack of proper sanitization of user-supplied input. An attacker may leverage these issues to have...
cPanel 10.x - dohtaccess.html?dir Cross-Site Scripting
cPanel 10.x - dohtaccess.html?dir Cross-Site Scripting source: https://www.securityfocus.com/bid/19624/info cPanel is prone to multiple cross-site scripting vulnerabilities. These issues are due to a lack of proper sanitization of user-supplied input. An attacker may leverage these issues to have...
cPanel 10.x - editit.html?File Cross-Site Scripting
cPanel 10.x - editit.html?File Cross-Site Scripting source: https://www.securityfocus.com/bid/19624/info cPanel is prone to multiple cross-site scripting vulnerabilities. These issues are due to a lack of proper sanitization of user-supplied input. An attacker may leverage these issues to have...
[SA21592] cPanel Multiple Cross-Site Scripting Vulnerabilities
TITLE: cPanel Multiple Cross-Site Scripting Vulnerabilities SECUNIA ADVISORY ID: SA21592 VERIFY ADVISORY: http://secunia.com/advisories/21592/ CRITICAL: Less critical IMPACT: Cross Site Scripting WHERE: From remote SOFTWARE: cPanel 10.x http://secunia.com/product/5280/ DESCRIPTION: Preth00nker ha...