cPanel before 71.9980.37 allows attackers to make API calls that bypass the images feature restriction (SEC-430).
References
Link | Resource |
---|---|
https://documentation.cpanel.net/display/CL/72+Change+Log | Release Notes Vendor Advisory |
Configurations
Configuration 1 (hide)
|
Information
Published : 2019-08-01 08:15
Updated : 2020-08-24 10:37
NVD link : CVE-2018-20906
Mitre link : CVE-2018-20906
JSON object : View
CWE
CWE-732
Incorrect Permission Assignment for Critical Resource
Products Affected
cpanel
- cpanel