AOH :: HP Unsorted C :: B1A-1483.HTM

cPanel XSS Vulnerability



cPanel XSS Vulnerability
cPanel XSS Vulnerability



cPanel 11.25 is vulnerable to an XSS exploit as it fails to clean user-supplied input.=0D
=0D
All versions prior to 47010 are affected. Please note that whilst this vulnerability is patched in version 47010, 47010 is currently on the bleeding-edge and isn't recommended for the stable environment.=0D
=0D
Successful exploitation can result in user credentials being taken and being used to gain escalated privileges.=0D
=0D
References: http://changelog.cpanel.net/?revision=0;tree=;treeview=;show=html;pp=50 

The entire AOH site is optimized to look best in Firefox® 3 on a widescreen monitor (1440x900 or better).
Site design & layout copyright © 1986-2014 AOH
We do not send spam. If you have received spam bearing an artofhacking.com email address, please forward it with full headers to abuse@artofhacking.com.