CVE-2016-10767

cPanel before 60.0.25 allows stored XSS in the WHM Repair Mailbox Permissions interface (SEC-159).

View Full Alert

Related Posts

  • CVE-2016-10761

    Logitech Unifying devices before 2016-02-26 allow keystroke injection, bypassing encryption, aka MouseJack. View Full Alert

  • CVE-2016-10814

    cPanel before 57.9999.54 allows demo-mode escape via show_template.stor (SEC-119). View Full Alert

  • CVE-2016-10813

    cPanel before 57.9999.54 allows self XSS during ftp account creation under addon domains (SEC-118). View Full Alert