Cpanel » Cgiecho : Security Vulnerabilities, CVEs,

CVE-2017-5616

Cross-site scripting (XSS) vulnerability in cgiemail and cgiecho allows remote attackers to inject arbitrary web script or HTML via the addendum parameter.
Max CVSS
6.1
EPSS Score
0.13%
Published
2017-03-03
Updated
2017-03-07

CVE-2017-5615

cgiemail and cgiecho allow remote attackers to inject HTTP headers via a newline character in the redirect location.
Max CVSS
6.1
EPSS Score
0.13%
Published
2017-03-03
Updated
2017-03-07

CVE-2017-5613

Format string vulnerability in cgiemail and cgiecho allows remote attackers to execute arbitrary code via format string specifiers in a template file.
Max CVSS
7.8
EPSS Score
1.80%
Published
2017-03-03
Updated
2017-03-07
3 vulnerabilities found
This web site uses cookies for managing your session, storing preferences, website analytics and additional purposes described in our privacy policy.
By using this web site you are agreeing to CVEdetails.com terms of use!
Accept Close