WHM versions 0.82.16 through 0.82.19 suffer from multiple cross site scripting vulnerabilities.
8307900bbc187ac6532d3ecf2482c095===================================================
Title : (WHM v0.82.16 <= 19 ) Multiple XSS Vulnerabilities
Affected Versions: v0.82.16 <= v0.82.19
Vendor Home Page : https://cpanel.net/
Author : HexraiN
CX Security : https://cxsecurity.com/issue/WLB-2020040047
Youtube Video : https://youtu.be/E90ZcKp1QbM
===================================================
Description :
vulnerabilities are divided into sections within the video,
the address next to each section contains the part where the vulnerability
is processed ...
1) - Stored XSS (https://youtu.be/E90ZcKp1QbM?t=6)
2) - File-based XSS from Uploading Image File (
https://youtu.be/E90ZcKp1QbM?t=54)
3 ) - File-based XSS from arbitrary file upload (
https://youtu.be/E90ZcKp1QbM?t=206 <https://youtu.be/E90ZcKp1QbM?t=206>)
***************************************
Twitter : @H3xr4in
BLog : https://sudo-security.github.io
***************************************