Maketext in cPanel before 78.0.2 allows format-string injection in the DCV check_domains_via_dns UAPI (SEC-474).
References
Link | Resource |
---|---|
https://documentation.cpanel.net/display/CL/78+Change+Log | Release Notes Vendor Advisory |
Configurations
Information
Published : 2019-07-30 08:15
Updated : 2019-07-30 12:56
NVD link : CVE-2019-14412
Mitre link : CVE-2019-14412
JSON object : View
CWE
CWE-134
Use of Externally-Controlled Format String
Products Affected
cpanel
- cpanel