CPanel Multiple Cross-Site Scripting Vulnerabilities
BID:9965
Info
CPanel Multiple Cross-Site Scripting Vulnerabilities
| Bugtraq ID: | 9965 |
| Class: | Input Validation Error |
| CVE: | |
| Remote: | Yes |
| Local: | No |
| Published: | Mar 24 2004 12:00AM |
| Updated: | Mar 24 2004 12:00AM |
| Credit: | Disclosure of this issue is credited to Fable <[email protected]>. |
| Vulnerable: |
cPanel cPanel 9.1 |
| Not Vulnerable: | |
Discussion
CPanel Multiple Cross-Site Scripting Vulnerabilities
Reportedly cPanel is prone to multiple cross-site scripting vulnerabilities. These issues are due to a failure of the application to properly validate user supplied URI input.
These issues could permit a remote attacker to create a malicious link to the vulnerable application that includes hostile HTML and script code. If this link were followed, the hostile code may be rendered in the web browser of the victim user. This would occur in the security context of the affected web site and may allow for theft of cookie-based authentication credentials or other attacks.
Reportedly cPanel is prone to multiple cross-site scripting vulnerabilities. These issues are due to a failure of the application to properly validate user supplied URI input.
These issues could permit a remote attacker to create a malicious link to the vulnerable application that includes hostile HTML and script code. If this link were followed, the hostile code may be rendered in the web browser of the victim user. This would occur in the security context of the affected web site and may allow for theft of cookie-based authentication credentials or other attacks.
Exploit / POC
CPanel Multiple Cross-Site Scripting Vulnerabilities
No exploit is required to leverage this issue. The following proof of concept has been provided:
http://www.example.com:2082/frontend/x/mail/dodelautores.html?email=<script>alert(document.cookie)</script>
http://www.example.com:2082/frontend/x/mime/addhandle.html?ext=phpz&handle=<script>alert(document.cookie</script>
No exploit is required to leverage this issue. The following proof of concept has been provided:
http://www.example.com:2082/frontend/x/mail/dodelautores.html?email=<script>alert(document.cookie)</script>
http://www.example.com:2082/frontend/x/mime/addhandle.html?ext=phpz&handle=<script>alert(document.cookie</script>
Solution / Fix
CPanel Multiple Cross-Site Scripting Vulnerabilities
Solution:
Currently we are not aware of any vendor-supplied patches for this issue. If you feel we are in error or are aware of more recent information, please mail us at: [email protected] <mailto:[email protected]>.
Solution:
Currently we are not aware of any vendor-supplied patches for this issue. If you feel we are in error or are aware of more recent information, please mail us at: [email protected] <mailto:[email protected]>.