Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
scripts/wwwacct in cPanel 11.18.6 STABLE and earlier and 11.23.1 CURRENT and earlier allows remote authenticated users with reseller privileges to execute arbitrary code via shell metacharacters in the Email address field (aka Email text box). NOTE: the vendor disputes this, stating "I'm unable to reproduce such an issue on multiple servers running different versions of cPanel.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
cPanel cPanel 'wwwact' 远程特权提升漏洞
Vulnerability Description
**有争议的 **cPanel 11.18.6稳定版以及之前的版本和11.23.1目前版以及之前的版本中的scripts/wwwacct允许拥有代理特权的远程认证用户借助邮箱地址字段(又称电子邮件文本框)中的外壳元字符,执行任意代码。
CVSS Information
N/A
Vulnerability Type
N/A