Announcement Announcement Module
Collapse
No announcement yet.
External XML entity injection in WHM/cPanel [Case 88793] Page Title Module
Move Remove Collapse
X
Conversation Detail Module
Collapse
  • Filter
  • Time
  • Show
Clear All
new posts

  • External XML entity injection in WHM/cPanel [Case 88793]

    The WHM/cPanel XML locale file uploads allowed the processing of external XML entities. This would permit resellers with the ‘locale-edit’ ACL to read any files on the system, make arbitrary network connections, and can also DoS the server with the billion laughs attack.

    Fixed Version:
    This issue is resolved in the following builds:

    11.42.0.23
    11.40.1.13
    11.38.2.23
Tag Cloud Tag Cloud Module
Collapse
Working...
X