CVE-2004-1603

cPanel 9.4.1-RELEASE-64 follows hard links, which allows local users to 1 read arbitrary files via the backup feature or 2 chown arbitrary files via the .htaccess file when Front Page extensions are enabled or disabled...

CVE-2004-2308

Cross-site scripting XSS vulnerability in cPanel 9.1.0 and possibly earlier allows remote attackers to inject arbitrary web script or HTML via the dir parameter in dohtaccess.html...

cPanel Remote Backup Module Information Disclosure

Binary data 2392.prm...

cPanel Front Page Extension Installation Information Disclosure

Binary data 2391.prm...

[Full-Disclosure] cPanel check only the first 8 characters of webmail password

cPanel check only the first 8 characters of webmail password. HiddenBit.org Security Advisory. Date: October 21, 2004 Software: cPanel 9.4.1-STABLE 65 Author: Andrey Bayora BACKGROUND cPanel & WebHost Manager WHM is a next generation web hosting control panel system. Both cPanel & WHM are extreme...

CVE-2004-1603

cPanel 9.4.1-RELEASE-64 follows hard links, which allows local users to 1 read arbitrary files via the backup feature or 2 chown arbitrary files via the .htaccess file when Front Page extensions are enabled or disabled...

cPanel 9.9.1 -R3 Front Page Extension - Installation Information Disclosure

cPanel 9.9.1 -R3 Front Page Extension - Installation Information Disclosure source: https://www.securityfocus.com/bid/11456/info It is reported that cPanel is susceptible to an information disclosure vulnerability in its function to enable Front Page extensions. This vulnerability reportedly allo...

[Full-Disclosure] cPanel hardlink backup issue

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Name: cPanel Vendor URL: http://www.cpanel.net Author: Karol Wisek [email protected] Date: July 19, 2004 Issue: cPanel backup feature allows logged in users to read any file, including they have not permission to read to. Description: cPanel i...

PT-2004-2511 · Cpanel · Cpanel

Name of the Vulnerable Software and Affected Versions: cPanel version 9.4.1-RELEASE-64 Description: The issue allows local users to read arbitrary files via the backup feature or chown arbitrary files via the .htaccess file when Front Page extensions are enabled or disabled. This is due to the...

[Full-Disclosure] cPanel symlink chmod issue

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Name: cPanel Vendor URL: http://www.cpanel.net Author: Karol Wisek [email protected] Date: September 30, 2004 Issue: cPanel allows logged in users to change permission of any file to 755. Description: cPanel is a next generation web hosting...

[Full-Disclosure] cPanel hardlink chown issue

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Name: cPanel Vendor URL: http://www.cpanel.net Author: Karol Wisek [email protected] Date: July 31, 2004 Issue: cPanel allows logged in users to change ownership of any file to their uid:gid. Description: cPanel is a next generation web hostin...

cPanel 9.9.1 -R3 Front Page Extension - Installation Information Disclosure

source: https://www.securityfocus.com/bid/11456/info It is reported that cPanel is susceptible to an information disclosure vulnerability in its function to enable Front Page extensions. This vulnerability reportedly allows attackers to gain access to the contents of arbitrary, potentially...

CVE-2004-1604

cPanel 9.9.1-RELEASE-3 allows remote authenticated users to chmod arbitrary files via a symlink attack on the private directory, which is created when Front Page extensions are enabled...

CVE-2004-0490

cPanel, when compiling Apache 1.3.29 and PHP with the modphpsuexec option, does not set the --enable-discard-path option, which causes php to use the SCRIPTFILENAME variable to find and execute a script instead of the PATHTRANSLATED variable, which allows local users to execute arbitrary PHP code...

cPanel Remote Privilege Escalation vulnerability

Binary data 4509.prm...

CVE-2004-0529

The modified suexec program in cPanel, when configured for modphp and compiled for Apache 1.3.31 and earlier without modphpsuexec, allows local users to execute untrusted shared scripts and gain privileges, as demonstrated using untainted scripts such as 1 proftpdvhosts or 2 addalink.cgi, a...

Major Cpanel Expliot HTML Injection

Major Bug found 6/7/04 Discovered by Verb0s Reseller accounts with cpanel, in the password modification page, can insert a basic injection ex:http://domain:2086/scripts/passwd?password=&domain=&user= The code will modify all the mysql database passwords, in which the reseller shouldnb't have...

cpanelInject.txt

Major Bug found 6/7/04 Discovered by Verb0s Reseller accounts with cpanel, in the password modification page, can insert a basic injection ex:http://domain:2086/scripts/passwd?password=&domain=&user= The code will modify all the mysql database passwords, in which the reseller shouldnb't have...

cPanel 5-9 - Passwd SQL Injection

cPanel 5-9 - Passwd SQL Injection source: https://www.securityfocus.com/bid/10505/info cPanel is reportedly affected by a remote SQL injection vulnerability in the passwd script. This issue is due to a failure of the application to properly sanitize user-supplied URI parameter input before using ...

cPanel 5-9 - Passwd SQL Injection

source: https://www.securityfocus.com/bid/10505/info cPanel is reportedly affected by a remote SQL injection vulnerability in the passwd script. This issue is due to a failure of the application to properly sanitize user-supplied URI parameter input before using it in an SQL query. The problem...