cPanel before 62.0.4 allows reflected XSS in reset-password interfaces (SEC-198).
References
Link | Resource |
---|---|
https://documentation.cpanel.net/display/CL/62+Change+Log | Release Notes Vendor Advisory |
https://news.cpanel.com/tsr-2017-0001-full-disclosure/ | Vendor Advisory |
Configurations
Configuration 1 (hide)
|
Information
Published : 2019-08-05 06:15
Updated : 2019-08-07 05:40
NVD link : CVE-2017-18472
Mitre link : CVE-2017-18472
JSON object : View
CWE
CWE-79
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')
Products Affected
cpanel
- cpanel