cPanel TSR-2024-0001 Full Disclosure TSR-566 Summary Fix Self-XSS Vulnerability in webdiskvbs.cgi. Security Rating cPanel has assigned this vulnerability a CVSSv3.1 score of 3.5 CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:U/C:N/I:L/A:N Description The webdiskvbs.cgi script did not adequately validate and encode the query parameters. Because of this, it was possible to inject arbitrary data into the returned …
The post Targeted Security Release 2024-0002 Full Disclosure first appeared on cPanel Newsroom.