Vulnerabilities > CVE-2018-20886 - Insecure Storage of Sensitive Information vulnerability in Cpanel

047910
CVSS 5.3 - MEDIUM
Attack vector
LOCAL
Attack complexity
LOW
Privileges required
LOW
Confidentiality impact
LOW
Integrity impact
LOW
Availability impact
LOW
local
low complexity
cpanel
CWE-922

Summary

cPanel before 74.0.0 insecurely stores phpMyAdmin session files (SEC-418).

Common Weakness Enumeration (CWE)