Cross-site Scripting Vulnerability in cPanel WebHost Manager

CVE-2012-6448

What is CVE-2012-6448?

A Cross-site Scripting (XSS) vulnerability exists in cPanel WebHost Manager (WHM) version 11.34.0, which allows remote attackers to inject arbitrary web scripts or HTML into the application via unspecified vectors. This flaw can potentially lead to unauthorized access to sensitive information or further exploitation of user sessions.

References