CVE-2008-2070
cPanel 11.x - '/scripts2/changeip?user' Cross-Site Scripting
Severity Score
Exploit Likelihood
Affected Versions
Public Exploits
4Exploited in Wild
-Decision
Descriptions
The WHM interface 11.15.0 for cPanel 11.18 before 11.18.4 and 11.22 before 11.22.3 allows remote attackers to bypass XSS protection and inject arbitrary script or HTML via repeated, improperly-ordered "<" and ">" characters in the (1) issue parameter to scripts2/knowlegebase, (2) user parameter to scripts2/changeip, (3) search parameter to scripts2/listaccts, and other unspecified vectors.
La interfaz WHM 11.15.0 para cPanel 11.18 anterior a 11.18.4 y 11.22 anterior a 11.22.3 permite a atacantes remotos evitar la protección XSS e inyectar secuencias de comandos o HTML de su elección mediante caracteres "<" y ">" repetidos ordenados incorrectamente en los parámetros 1) issue a scripts2/knowlegebase, (2) user a scripts2/changeip, (3) search a scripts2/listaccts y otros vectores no especificados.
cPanel versions below 11.18.4 and 11.22.3 suffer from cross site scripting and cross site request forgery vulnerabilities.
CVSS Scores
SSVC
- Decision:-
Timeline
- 2008-05-05 CVE Reserved
- 2008-05-09 CVE Published
- 2008-05-09 First Exploit
- 2024-08-07 CVE Updated
- 2024-12-30 EPSS Updated
- ---------- Exploited in Wild
- ---------- KEV Due Date
CWE
- CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')
CAPEC
References (11)
| URL | Tag | Source |
|---|---|---|
| http://changelog.cpanel.net/?revision=0%3Btree=%3Btreeview=%3Bshow=html%3Bpp=25%3Bte=1314%3Bpg=2 | X_refsource_misc | |
| http://lists.grok.org.uk/pipermail/full-disclosure/2008-May/062197.html | Mailing List | |
| http://secunia.com/advisories/30166 | Third Party Advisory | |
| http://securityreason.com/securityalert/3866 | Third Party Advisory | |
| http://www.securityfocus.com/archive/1/491864/100/0/threaded | Mailing List | |
| http://www.vupen.com/english/advisories/2008/1522/references | Vdb Entry | |
| https://exchange.xforce.ibmcloud.com/vulnerabilities/42305 | Vdb Entry |
| URL | Date | SRC |
|---|---|---|
| https://www.exploit-db.com/exploits/31772 | 2008-05-09 | |
| https://www.exploit-db.com/exploits/31771 | 2008-05-09 | |
| https://www.exploit-db.com/exploits/31773 | 2008-05-09 | |
| http://www.securityfocus.com/bid/29125 | 2024-08-07 |
| URL | Date | SRC |
|---|
| URL | Date | SRC |
|---|
Affected Vendors, Products, and Versions
| Vendor | Product | Version | Other | Status | ||||||
|---|---|---|---|---|---|---|---|---|---|---|
| Vendor | Product | Version | Other | Status | <-- --> | Vendor | Product | Version | Other | Status |
| Cpanel Search vendor "Cpanel" | Cpanel Search vendor "Cpanel" for product "Cpanel" | 11.18 Search vendor "Cpanel" for product "Cpanel" and version "11.18" | - |
Affected
| ||||||
| Cpanel Search vendor "Cpanel" | Cpanel Search vendor "Cpanel" for product "Cpanel" | 11.18.1 Search vendor "Cpanel" for product "Cpanel" and version "11.18.1" | - |
Affected
| ||||||
| Cpanel Search vendor "Cpanel" | Cpanel Search vendor "Cpanel" for product "Cpanel" | 11.18.2 Search vendor "Cpanel" for product "Cpanel" and version "11.18.2" | - |
Affected
| ||||||
| Cpanel Search vendor "Cpanel" | Cpanel Search vendor "Cpanel" for product "Cpanel" | 11.18.3 Search vendor "Cpanel" for product "Cpanel" and version "11.18.3" | - |
Affected
| ||||||
| Cpanel Search vendor "Cpanel" | Cpanel Search vendor "Cpanel" for product "Cpanel" | 11.22 Search vendor "Cpanel" for product "Cpanel" and version "11.22" | - |
Affected
| ||||||
| Cpanel Search vendor "Cpanel" | Cpanel Search vendor "Cpanel" for product "Cpanel" | 11.22.1 Search vendor "Cpanel" for product "Cpanel" and version "11.22.1" | - |
Affected
| ||||||
| Cpanel Search vendor "Cpanel" | Cpanel Search vendor "Cpanel" for product "Cpanel" | 11.22.2 Search vendor "Cpanel" for product "Cpanel" and version "11.22.2" | - |
Affected
| ||||||