Vulnerabilities > CVE-2006-3337 - Cross-Site Scripting vulnerability in Cpanel Select.HTML

047910
CVSS 2.6 - LOW
Attack vector
NETWORK
Attack complexity
HIGH
Privileges required
NONE
Confidentiality impact
NONE
Integrity impact
PARTIAL
Availability impact
NONE
network
high complexity
cpanel
exploit available

Summary

Cross-site scripting (XSS) vulnerability in frontend/x/files/select.html in cPanel 10.8.2-CURRENT 118 and earlier allows remote attackers to inject arbitrary web script or HTML via the file parameter.

Vulnerable Configurations

Part Description Count
Application
Cpanel
1

Exploit-Db

descriptionCpanel 10 Select.HTML Cross-Site Scripting Vulnerability. CVE-2006-3337. Webapps exploit for php platform
idEDB-ID:28107
last seen2016-02-03
modified2006-06-26
published2006-06-26
reporterpreth00nker
sourcehttps://www.exploit-db.com/download/28107/
titleCpanel 10 Select.HTML Cross-Site Scripting Vulnerability