cPanel before 68.0.15 allows collisions because PostgreSQL databases can be assigned to multiple accounts (SEC-325).
References
Link | Resource |
---|---|
https://documentation.cpanel.net/display/CL/68+Change+Log | Product Release Notes |
https://news.cpanel.com/cpanel-tsr-2017-0006-full-disclosure/ | Vendor Advisory |
Configurations
Configuration 1 (hide)
|
Information
Published : 2019-08-02 07:15
Updated : 2019-08-13 06:40
NVD link : CVE-2017-18392
Mitre link : CVE-2017-18392
JSON object : View
CWE
CWE-20
Improper Input Validation
Products Affected
cpanel
- cpanel