4.3
CVE-2007-0890
- EPSS 5.66%
- Veröffentlicht 12.02.2007 23:28:00
- Zuletzt bearbeitet 09.04.2025 00:30:58
- Quelle cve@mitre.org
- CVE-Watchlists
- Unerledigt
LoginCross-site scripting (XSS) vulnerability in scripts/passwdmysql in cPanel WebHost Manager (WHM) 11.0.0 and earlier allows remote attackers to inject arbitrary web script or HTML via the password parameter.
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
Cpanel ≫ Webhost Manager Version5.0
Cpanel ≫ Webhost Manager Version5.3
Cpanel ≫ Webhost Manager Version6.0
Cpanel ≫ Webhost Manager Version6.2
Cpanel ≫ Webhost Manager Version6.4
Cpanel ≫ Webhost Manager Version6.4.1
Cpanel ≫ Webhost Manager Version6.4.2
Cpanel ≫ Webhost Manager Version6.4.2_stable_48
Cpanel ≫ Webhost Manager Version7.0
Cpanel ≫ Webhost Manager Version8.0
Cpanel ≫ Webhost Manager Version9.0
Cpanel ≫ Webhost Manager Version9.1
Cpanel ≫ Webhost Manager Version9.1.0_r85
Cpanel ≫ Webhost Manager Version9.4.1_r64
Cpanel ≫ Webhost Manager Version9.9.1_r3
Cpanel ≫ Webhost Manager Version10.2.0_r82
Cpanel ≫ Webhost Manager Version10.6.0_r137
Cpanel ≫ Webhost Manager Version10.8.1_113
Cpanel ≫ Webhost Manager Version10.8.1_build84
Cpanel ≫ Webhost Manager Version10.8.2_118
Cpanel ≫ Webhost Manager Version10.9
Cpanel ≫ Webhost Manager Version11
Cpanel ≫ Webhost Manager Version11.0
Cpanel ≫ Webhost Manager Version11_beta
| Typ | Quelle | Score | Percentile |
|---|---|---|---|
| EPSS | FIRST.org | 5.66% | 0.9 |
| Quelle | Base Score | Exploit Score | Impact Score | Vector String |
|---|---|---|---|---|
| nvd@nist.gov | 4.3 | 8.6 | 2.9 |
AV:N/AC:M/Au:N/C:N/I:P/A:N
|