Back to search
CVE-2007-0854
Published: Feb 8, 2007
Modified: Aug 7, 2024
PUBLISHED
Description
Remote file inclusion vulnerability in scripts2/objcache in cPanel WebHost Manager (WHM) allows remote attackers to execute arbitrary code via a URL in the obj parameter. NOTE: a third party claims that this issue is not file inclusion because the contents are not parsed, but the attack can be used to overwrite files in /var/cpanel/objcache or provide unexpected web page contents.
| Vendor | Product | Versions |
|---|---|---|
n/a | n/a | affected n/a |
References
ADV-2007-0545
vdb-entry
x_refsource_VUPEN
20070208 Re: remote file include in whm (all version)
mailing-list
x_refsource_BUGTRAQ
cpanel-webhost-objcache-xss(32400)
vdb-entry
x_refsource_XF
33240
vdb-entry
x_refsource_OSVDB
http://changelog.cpanel.net/index.cgi
x_refsource_CONFIRM
20070207 remote file include in whm (all version)
mailing-list
x_refsource_BUGTRAQ
22455
vdb-entry
x_refsource_BID
32043
vdb-entry
x_refsource_OSVDB
24097
third-party-advisory
x_refsource_SECUNIA
35750
vdb-entry
x_refsource_OSVDB
Security Training
Train your team to recognize and prevent security threats with our comprehensive security awareness program.
Start TrainingVulnerability Scanning
Discover vulnerabilities in your applications and infrastructure before attackers do.
Scan Now