SEC-661 Summary Fix test used by cpsrvd to check for PHP. Security Rating cPanel has assigned this vulnerability a CVSSv3.1 score of 4.1 CVSS3.1/AV:N/AC:L/PR:H/UI:N/S:C/C:L/I:H/A:H Description The test to refuse to run a PHP page for resellers logged into WHM wasn’t checking for the case where extra path info is added …
The post cPanel TSR-2022-0005 Full Disclosure first appeared on cPanel Newsroom.