Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
seebugRootSSV:3285
HistoryMay 14, 2008 - 12:00 a.m.

cPanel跨站脚本和跨站请求伪造漏洞

2008-05-1400:00:00
Root
www.seebug.org
56

0.006 Low

EPSS

Percentile

76.0%

JSON

BUGTRAQ ID: 29125
CVE(CAN) ID: CVE-2008-2070,CVE-2008-2071

cPanel是基于web的工具,用于自动化控制网站和服务器。

cPanel的WHM接口允许用户管理和访问cPanel及WHM软件包的核心。这个接口没有正确地防范跨站脚本和跨站请求伪造攻击,允许远程攻击者通过提交恶意请求在服务器上执行任意代码。

所有管理用户输入的函数都存在跨站脚本漏洞,以下为部分有漏洞的函数列表:

  • Knowlege Base(/scripts2/knowlegebase?issue=[INJECTION]&domain=)
  • Change Ip to domain(/scripts2/changeip?domain=any&user=[INJECTION])
  • List user account(/scripts2/listaccts?searchtype=domain&search=[INJECTION]&acctp=30)

所有通过HTTP方式执行操作(如重启服务或整个服务器)的函数都存在跨站请求伪造漏洞。

cPanel 11.18.3-R21703
cPanel

目前厂商已经发布了升级补丁以修复这个安全问题,请到厂商的主页下载:

<a href=“http://www.cpanel.net” target=“_blank”>http://www.cpanel.net</a>


                                                http://www.example.com/scripts2/knowlegebase?issue=[INJECTION]&amp;amp;domain=
http://www.example.com/scripts2/changeip?domain=any&amp;amp;user=[INJECTION]
http://www.example.com/scripts2/listaccts?searchtype=domain&amp;amp;search=[INJE

Related

securityvulns 2
packetstorm 1
cve 2
prion 2
securityvulns
securityvulns
XSS and CSRF vulnerability on Cpanel 11
2008-05-11 00:00:00
Daily web applications security vulnerabilities summary &#40;PHP, ASP, JSP, CGI, Perl&#41;
2008-05-11 00:00:00
packetstorm
packetstorm
cpanel-xssxsrf.txt
2008-05-09 00:00:00
cve
cve
CVE-2008-2070
2008-05-12 16:20:00
CVE-2008-2071
2008-05-12 16:20:00
prion
prion
Cross site request forgery (csrf)
2008-05-12 16:20:00
Cross site scripting
2008-05-12 16:20:00

0.006 Low

EPSS

Percentile

76.0%

JSON
Related for SSV:3285
securityvulns2packetstorm1cve2prion2