[CLOSE] OSVDB ID : 44847 - Disclosed: 2008-04-17

Description:

(Description Provided by CVE) : Multiple cross-site request forgery (CSRF) vulnerabilities in cPanel, possibly 11.18.3 and 11.19.3, allow remote attackers to (1) execute arbitrary code via the command1 parameter to frontend/x2/cron/editcronsimple.html, and perform various administrative actions via (2) frontend/x2/sql/adddb.html, (3) frontend/x2/sql/adduser.html, and (4) frontend/x2/ftp/doaddftp.html.

[CLOSE] OSVDB ID : 61231 - Disclosed: 2009-12-17

Description:

cPanel contains a flaw that allows a remote cross site scripting (XSS) attack. This flaw exists because the application does not validate the 'fileop' parameter upon submission to the 'frontend/x3/files/fileop.html' script. This may allow a user to create a specially crafted URL that would execute arbitrary script code in a user's browser within the trust relationship between their browser and the server.

[CLOSE] OSVDB ID : 88749 - Disclosed: 2012-12-24

Description:

cPanel contains a flaw that allows a remote cross-site scripting (XSS) attack. This flaw exists because the application does not validate the 'account' parameter upon submission to the frontend/x3/mail/manage.html script. This may allow a user to create a specially crafted request that would execute arbitrary script code in a user's browser within the trust relationship between their browser and the server.

[CLOSE] OSVDB ID : 55515 - Disclosed: 2009-06-29

Description:

(Description Provided by CVE) : Directory traversal vulnerability in frontend/x3/stats/lastvisit.html in cPanel allows remote attackers to read arbitrary files via a .. (dot dot) in the domain parameter.

[CLOSE] OSVDB ID : 10961 - Disclosed: 2004-10-18

Description:

(Description Provided by CVE) : cPanel 9.4.1-RELEASE-64 follows hard links, which allows local users to (1) read arbitrary files via the backup feature or (2) chown arbitrary files via the .htaccess file when Front Page extensions are enabled or disabled.

[CLOSE] OSVDB ID : 10962 - Disclosed: 2004-10-18

Description:

(Description Provided by CVE) : cPanel 9.9.1-RELEASE-3 allows remote authenticated users to chmod arbitrary files via a symlink attack on the _private directory, which is created when Front Page extensions are enabled.

[CLOSE] OSVDB ID : 4220 - Disclosed: 2003-02-19

Description:

cPanel contains a flaw that allows a remote attacker to execute arbitrary commands. The issue is due to the "guestbook.cgi" script not properly sanitizing input to the "template" variable. By providing a specially crafted argument to this variable, an attacker can execute arbitrary commands.

[CLOSE] OSVDB ID : 22940 - Disclosed: 2006-02-04

Description:

cPanel contains a flaw that allows a remote cross site scripting attack. This flaw exists because the application does not validate the file extension or MIME type upon submission to the handle.html script. This could allow a user to create a specially crafted URL that would execute arbitrary code in a user's browser within the trust relationship between the browser and the server, leading to a loss of integrity.

[CLOSE] OSVDB ID : 4244 - Disclosed: 2004-03-13

Description:

cPanel contains a flaw that allows a remote cross site scripting attack. This flaw exists because the application does not validate the "dir" variable upon submission to the "htaccess/index.html" script. This could allow a user to create a specially crafted URL that would execute arbitrary code in a user's browser within the trust relationship between the browser and the server, leading to a loss of integrity.

[CLOSE] OSVDB ID : 4211 - Disclosed: 2004-03-13

Description:

cPanel contains a flaw that allows a remote cross site scripting attack. This flaw exists because the application does not validate the "account" variable upon submission to the "ignorelist.html" script. This could allow a user to create a specially crafted URL that would execute arbitrary code in a user's browser within the trust relationship between the browser and the server, leading to a loss of integrity.

[CLOSE] OSVDB ID : 6712 - Disclosed: 2004-06-07

Description:

CPanel contains a flaw that may allow a malicious user to delete arbitrary customer DNS records. The issue is triggered when a remote authenticated attacker invokes the script "/scripts/killacct" to delete the DNS information of other accounts, which belong to other administrators. By setting a crafted cookie, a remote attacker can delete any DNS records, resulting in a loss of availability.

[CLOSE] OSVDB ID : 53264 - Disclosed: 2009-03-17

Description:

Unknown / Incomplete

[CLOSE] OSVDB ID : 68373 - Disclosed: 2010-09-01

Description:

Unknown / Incomplete

[CLOSE] OSVDB ID : 4218 - Disclosed: 2004-03-12

Description:

cPanel contains a flaw that allows a remote attacker to execute arbitrary commands. The issue is due to the "login" feature not properly sanitizing the "user" variable. If an attacker supplies a specially crafted username, arbitrary commands will be executed with the privileges of the cPanel software.

[CLOSE] OSVDB ID : 61954 - Disclosed: 2010-01-21

Description:

cPanel contains a flaw that allows HTTP response splitting. This flaw exists because the application does not validate the 'failurl' parameter upon submission to the 'login/index.php' script. This could allow a context-dependent attacker to insert arbitrary HTTP headers, which are included in a response sent to the user.

[CLOSE] OSVDB ID : 33233 - Disclosed: 2006-12-01

Description:

Unknown / Incomplete

[CLOSE] OSVDB ID : 6418 - Disclosed: 2004-05-23

Description:

cPan contains a flaw that may allow a remote attacker to execute arbitrary code. The problem is that cPanel compiles Apache and PHP with the mod_phpsuexec option. It is possible that the flaw may allow arbitrary code execution with the privileges of any other user which owns a web accessible php file, resulting in a loss of integrity.

[CLOSE] OSVDB ID : 52253 - Disclosed: 2008-08-09

Description:

Unknown / Incomplete

[CLOSE] OSVDB ID : 29072 - Disclosed: 2006-07-26

Description:

Unknown / Incomplete

[CLOSE] OSVDB ID : 88125 - Disclosed: 2012-12-04

Description:

cPanel contains multiple unspecified issues. No further details have been provided.

[CLOSE] OSVDB ID : 29122 - Disclosed: 2006-09-25

Description:

(Description Provided by CVE) : Unspecified vulnerability in cPanel before 10.9.0 12 Tree allows remote authenticated users to gain privileges via unspecified vectors in (1) mysqladmin and (2) hooksadmin.

[CLOSE] OSVDB ID : 30387 - Disclosed: 2006-11-12

Description:

CPanel contains a flaw that allows a remote cross site scripting attack. This flaw exists because the application does not validate the 'user' and 'dir' variables upon submission to the 'newuser.html' script. This could allow a user to create a specially crafted URL that would execute arbitrary code in a user's browser within the trust relationship between the browser and the server, leading to a loss of integrity.

[CLOSE] OSVDB ID : 22972 - Disclosed: 2006-02-08

Description:

Unknown / Incomplete

[CLOSE] OSVDB ID : 7006 - Disclosed: 2004-06-09

Description:

cPanel contains a flaw that may allow a malicious user to overwrite database entries, including password information. The issue is triggered when the user passes special characters within the "password", "domain" and "user" variables to the password change script. It is possible that the flaw may allow privilege escalation resulting in a loss of integrity.

[CLOSE] OSVDB ID : 52252 - Disclosed: 2008-08-09

Description:

Unknown / Incomplete

[CLOSE] OSVDB ID : 31835 - Disclosed: 2007-01-11

Description:

(Description Provided by CVE) : cPanel does not automatically synchronize the PHP open_basedir configuration directive between the main server and virtual hosts that share physical directories, which might allow a local user to bypass open_basedir restrictions and access other virtual hosts via a PHP script that uses a main server URL (such as ~username) that is blocked by the user's own open_basedir directive, but not the main server's open_basedir directive.

[CLOSE] OSVDB ID : 4213 - Disclosed: 2004-03-13

Description:

cPanel contains a flaw that allows a remote cross site scripting attack. This flaw exists because the application does not validate the "db" variable upon submission to the "repairdb.html" script. This could allow a user to create a specially crafted URL that would execute arbitrary code in a user's browser within the trust relationship between the browser and the server, leading to a loss of integrity.

[CLOSE] OSVDB ID : 4205 - Disclosed: 2004-03-11

Description:

cPanel contains a flaw that allows a remote attacker to execute arbitrary commands. The issue is due to the "resetpass" feature not properly sanitizing the "user" variable. If an attacker supplies a specially crafted username, arbitrary commands will be executed with the privileges of the cPanel software.

[CLOSE] OSVDB ID : 45816 - Disclosed: 2008-05-18

Description:

(Description Provided by CVE) : ** DISPUTED ** scripts/wwwacct in cPanel 11.18.6 STABLE and earlier and 11.23.1 CURRENT and earlier allows remote authenticated users with reseller privileges to execute arbitrary code via shell metacharacters in the Email address field (aka Email text box). NOTE: the vendor disputes this, stating "I'm unable to reproduce such an issue on multiple servers running different versions of cPanel."

[CLOSE] OSVDB ID : 52251 - Disclosed: 2008-08-09

Description:

cPanel contains a flaw that allows a remote cross site scripting attack. This flaw exists because the application does not validate the query string upon submission to the scripts2/confdkillproc script. This could allow a user to create a specially crafted URL that would execute arbitrary code in a user's browser within the trust relationship between the browser and the server, leading to a loss of integrity.