RSS   Vulnerabilities for 'Cgiemail'   RSS

2017-03-03
 
CVE-2017-5616

 

 
Cross-site scripting (XSS) vulnerability in cgiemail and cgiecho allows remote attackers to inject arbitrary web script or HTML via the addendum parameter.

 
 
CVE-2017-5615

 

 
cgiemail and cgiecho allow remote attackers to inject HTTP headers via a newline character in the redirect location.

 
 
CVE-2017-5614

 

 
Open redirect vulnerability in cgiemail and cgiecho allows remote attackers to redirect users to arbitrary web sites and conduct phishing attacks via vectors involving the (1) success or (2) failure parameter.

 
 
CVE-2017-5613

 

 
Format string vulnerability in cgiemail and cgiecho allows remote attackers to execute arbitrary code via format string specifiers in a template file.

 

 >>> Vendor: Cpanel 5 Products
Cgiemail
Cpanel
Webhost manager
Cgiecho
WHM


Copyright 2024, cxsecurity.com

 

Back to Top