CVE-2018-20951
CVE-2018-20951 affects cPanel prior to 68.0.27, enabling a self XSS in the WHM Spamd Startup Config. The vulnerability stems from insufficient validation of client-controlled data in the Startup Config, allowing execution of client-side code in some contexts. Affected software is cPanel/WHM (Spam...