Vulnerability CVE-2018-20929


Published: 2019-08-01   Modified: 2019-08-02

Description:
cPanel before 70.0.23 allows an open redirect via the /unprotected/redirect.html endpoint (SEC-392).

Type:

CWE-601

(URL Redirection to Untrusted Site ('Open Redirect'))

Vendor: Cpanel
Product: Cpanel 
Version:
70.0.9
70.0.8
70.0.6
70.0.5
70.0.4
70.0.2
70.0.18
70.0.17
70.0.16
70.0.13
70.0.12
70.0.10
69.9999.150
69.9999.149
69.9999.145
69.9999.141
69.9999.140
69.9999.139
69.9999.138
69.9999.134
69.9999.132
69.9999.125
69.9999.122
68.0.9
68.0.8
68.0.7
68.0.6
68.0.4
68.0.30
68.0.3
68.0.29
68.0.28
68.0.27
68.0.26
68.0.25
68.0.23
68.0.21
68.0.20
68.0.2
68.0.19
68.0.17
68.0.16
68.0.15
68.0.14
68.0.13
68.0.12
68.0.10
68.0.1
67.9999.99
67.9999.96
67.9999.86
67.9999.78
67.9999.76
67.9999.64
67.9999.130
67.9999.128
67.9999.127
67.9999.125
67.9999.124
67.9999.118
67.9999.103
62.0.9
62.0.8
62.0.7
62.0.6
62.0.5
62.0.40
62.0.4
62.0.39
62.0.38
62.0.36
62.0.35
62.0.34
62.0.31
62.0.30
62.0.29
62.0.28
62.0.27
62.0.26
62.0.24
62.0.23
62.0.2
62.0.19
62.0.17
62.0.16
62.0.15
62.0.14
62.0.12
62.0.11
62.0.10
62.0.1
61.9999.96
61.9999.84
61.9999.82
61.9999.66
61.9999.65
61.9999.55
61.9999.120
61.9999.115
61.9999.101
See more versions on NVD

CVSS2 => (AV:N/AC:M/Au:N/C:P/I:P/A:N)

CVSS Base Score
Impact Subscore
Exploitability Subscore
5.8/10
4.9/10
8.6/10
Exploit range
Attack complexity
Authentication
Remote
Medium
No required
Confidentiality impact
Integrity impact
Availability impact
Partial
Partial
None

 References:
https://documentation.cpanel.net/display/CL/70+Change+Log
https://news.cpanel.com/cpanel-tsr-2018-0002-full-disclosure/

Related CVE
CVE-2019-17380
cPanel before 82.0.15 allows self XSS in the WHM Update Preferences interface (SEC-528).
CVE-2019-17379
cPanel before 82.0.15 allows self stored XSS in the WHM SSL Storage Manager interface (SEC-527).
CVE-2019-17378
cPanel before 82.0.15 allows self XSS in the SSL Key Delete interface (SEC-526).
CVE-2019-17377
cPanel before 82.0.15 allows self XSS in LiveAPI example scripts (SEC-524).
CVE-2019-17376
cPanel before 82.0.15 allows self XSS in the SSL Certificate Upload interface (SEC-521).
CVE-2019-17375
cPanel before 82.0.15 allows API token credentials to persist after an account has been renamed or terminated (SEC-517).
CVE-2016-10812
In cPanel before 57.9999.54, /scripts/enablefileprotect exposed TTYs (SEC-117).
CVE-2016-10811
In cPanel before 57.9999.54, /scripts/unsuspendacct exposed TTYs (SEC-116).

Copyright 2019, cxsecurity.com

 

Back to Top