The WHM Upload Locale interface in cPanel before 56.0.51, 58.x before 58.0.52, 60.x before 60.0.45, 62.x before 62.0.27, 64.x before 64.0.33, and 66.x before 66.0.2 has XSS via a locale filename, aka SEC-297.
Max CVSS
5.4
EPSS Score
0.05%
Published
2017-07-19
Updated
2017-08-15
The clientconf.html and detailbw.html pages in x3 in cPanel & WHM 11.34.0 (build 8) have a XSS vulnerability.
Max CVSS
5.4
EPSS Score
0.05%
Published
2020-02-10
Updated
2020-02-13
2 vulnerabilities found