TITLE:
cPanel “resname” Cross-Site Scripting

SECUNIA ADVISORY ID:
SA26191

VERIFY ADVISORY:
http://secunia.com/advisories/26191/

CRITICAL:
Less critical

IMPACT:
Cross Site Scripting

WHERE:
From remote

SOFTWARE:
cPanel 10.x
http://secunia.com/product/5280/
cPanel 5.x
http://secunia.com/product/1110/
cPanel 6.x
http://secunia.com/product/1109/
cPanel 7.x
http://secunia.com/product/3184/
cPanel 8.x
http://secunia.com/product/3185/
cPanel 9.x
http://secunia.com/product/3186/

DESCRIPTION:
Aria-Security Team have reported a vulnerability in cPanel, which can be
exploited by malicious people to conduct cross-site scripting attacks.

Input passed to the “resname” parameter in
frontend/x/htaccess/changepro.html is not properly sanitised before
being returned to the user. This can be exploited to execute arbitrary
HTML and script code in a user’s browser session in context of an
affected site.

Successful exploitation requires that the target user has valid user
credentials.

The vulnerability is reported in all 10.x versions, as well as all prior
versions.

SOLUTION:
Filter malicious characters and character sequences in a web proxy.

Do not follow links from untrusted sources.

PROVIDED AND/OR DISCOVERED BY:
Aria-Security Team