CVE-2004-1875

cPanel 9.1.0-R85 - Cross-Site Scripting via Multiple Parameters

Title source: llm

Exploitation Summary

EIP tracks 1 public exploit for CVE-2004-1875. PoCs published by Aria-Security Team.

AI-analyzed exploit summary The provided text describes a cross-site scripting (XSS) vulnerability in Cpanel version 10, where user-supplied input is not properly sanitized. The vulnerability can be exploited by crafting a malicious URL with arbitrary script code.

Description

Multiple cross-site scripting (XSS) vulnerabilities in cPanel 9.1.0-R85 allow remote attackers to inject arbitrary web script or HTML via the (1) email parameter to testfile.html, (2) file parameter to erredit.html, (3) dns parameter to dnslook.html, (4) account parameter to ignorelist.html, (5) account parameter to showlog.html, (6) db parameter to repairdb.html, (7) login parameter to doaddftp.html (8) account parameter to editmsg.htm, or (9) ip parameter to del.html. NOTE: the dnslook.html vector was later reported to exist in cPanel 10.

Exploits (1)

exploitdb WRITEUP VERIFIED

by Aria-Security Team · textwebappsphp

https://www.exploit-db.com/exploits/29071

View Code ZIP pw:eip

The provided text describes a cross-site scripting (XSS) vulnerability in Cpanel version 10, where user-supplied input is not properly sanitized. The vulnerability can be exploited by crafting a malicious URL with arbitrary script code.

Classification

Writeup 90%

Attack Type

Xss

Complexity

Trivial

Reliability

Theoretical

Target: Cpanel version 10

No auth needed

Prerequisites: Access to the target URL · Victim interaction to click the malicious link

MITRE ATT&CK