cPanel 11.32.5 (build 11) CSRF Vulnerabilities

cPanelKenneth

cPanel Development
Staff member
Apr 7, 2006
4,608
79
458
cPanel Access Level
Root Administrator

Astral God

Well-Known Member
Sep 27, 2010
180
0
66
127.0.0.1
cPanel Access Level
Root Administrator

JaredR.

Well-Known Member
Feb 25, 2010
1,834
23
143
Houston, TX
cPanel Access Level
Root Administrator
There is no option in the interface to turn off security tokens in 11.36. You can still change the value for xsrftokens= in /var/cpanel/cpanel.config.

In 11.38, there will be no option to disable them at all, so it is best to adapt to using them, because they will be mandatory going forward.