Published: 22/08/2006 Updated: 17/10/2018

CVSS v2 Base Score: 4.3 | Impact Score: 2.9 | Exploitability Score: 8.6

VMScore: 445

Vector: AV:N/AC:M/Au:N/C:N/I:P/A:N

Multiple cross-site scripting (XSS) vulnerabilities in cPanel 10 allow remote malicious users to inject arbitrary web script or HTML via the (1) dir parameter in dohtaccess.html, or the (2) file parameter in (a) editit.html or (b) showfile.html.

Vulnerable Product	Search on Vulmon	Subscribe to Product
cpanel cpanel 10

source: wwwsecurityfocuscom/bid/19624/info cPanel is prone to multiple cross-site scripting vulnerabilities These issues are due to a lack of proper sanitization of user-supplied input An attacker may leverage these issues to have arbitrary script code executed in the browser of an unsuspecting user in the context of the affected ...

source: wwwsecurityfocuscom/bid/19624/info cPanel is prone to multiple cross-site scripting vulnerabilities These issues are due to a lack of proper sanitization of user-supplied input An attacker may leverage these issues to have arbitrary script code executed in the browser of an unsuspecting user in the context of the affected site ...

source: wwwsecurityfocuscom/bid/19624/info cPanel is prone to multiple cross-site scripting vulnerabilities These issues are due to a lack of proper sanitization of user-supplied input An attacker may leverage these issues to have arbitrary script code executed in the browser of an unsuspecting user in the context of the affected si ...

NVD-CWE-Other http://secunia.com/advisories/21592 http://www.securityfocus.com/bid/19624 http://www.osvdb.org/28041 http://www.osvdb.org/28042 http://www.osvdb.org/28043 http://securityreason.com/securityalert/1442 https://exchange.xforce.ibmcloud.com/vulnerabilities/28447 http://www.securityfocus.com/archive/1/443637/100/0/threaded https://nvd.nist.gov https://www.exploit-db.com/exploits/28415/

CVE-2006-4293

Vulnerability Summary

Exploits

References

Vulmon Search

About

Products

Connect