vendor:
Cpanel 11.x
by:
joker_1
7.5
CVSS
HIGH
Local File Include
98
CWE
Product Name: Cpanel 11.x
Affected Version From: Cpanel 11.x
Affected Version To: Cpanel 11.x
Patch Exists: NO
Related CWE: N/A
CPE: N/A
Metasploit:
N/A
Other Scripts:
N/A
Tags: N/A
CVSS Metrics: N/A
Nuclei References:
N/A
Nuclei Metadata: N/A
Platforms Tested: N/A
2008
Fantastico In all Version Cpanel 11.x <= local File Include
A vulnerability exists in Fantastico in all versions of Cpanel 11.x, which allows an attacker to include a local file. To exploit this vulnerability, an attacker must first login to port 2082 and disable mod_security, safe_mode, and all disable functions. The vulnerable code is located in http://xx.com:2082/frontend/x/fantastico/includes/xml.php, which includes a file called enc_licensing_servers.php. An attacker can exploit this vulnerability by creating a directory called /includes/ and uploading a shell.php file, which is then renamed to enc_licensing_servers.php. The exploit can then be accessed via http://xxx.com:2082/frontend/x/fantastico/includes/xml.php?fantasticopath=/home/user.
Mitigation:
To mitigate this vulnerability, ensure that mod_security, safe_mode, and all disable functions are enabled. Additionally, ensure that all files are properly validated and that all user input is sanitized.