The Community Forums

Interact with an entire community of cPanel & WHM users!
  1. This site uses cookies. By continuing to use this site, you are agreeing to our use of cookies. Learn More.

Cpanel 11.X Edit E-mail Cross Site Request Forgery exploit

Discussion in 'Security' started by ASTRAPI, Nov 22, 2010.

  1. ASTRAPI

    ASTRAPI Well-Known Member

    Joined:
    Jul 8, 2008
    Messages:
    321
    Likes Received:
    0
    Trophy Points:
    16
    A new exploit is out a few hours ago :(

    Cpanel 11.X Edit E-mail Cross Site Request Forgery exploit

    How can i protect from this?

    I do not use cpanel emails at all as i have only one account and i use a gmail account and not user@mydomain.com account.....

    What a user can do with this and how can i identify it?

    I am using ssl also on the whm login... Does that helps on this case?

    Thank you
     
    #1 ASTRAPI, Nov 22, 2010
    Last edited: Nov 22, 2010
  2. cPanelNick

    cPanelNick Administrator
    Staff Member

    Joined:
    Mar 9, 2015
    Messages:
    3,426
    Likes Received:
    2
    Trophy Points:
    38
    cPanel Access Level:
    DataCenter Provider
  3. ASTRAPI

    ASTRAPI Well-Known Member

    Joined:
    Jul 8, 2008
    Messages:
    321
    Likes Received:
    0
    Trophy Points:
    16
    Do i have to use the same setting to prevent this on the new 11.28 also?

    Or the new version do not extra settings to prevent this?

    Thank you
     
  4. cPanelNick

    cPanelNick Administrator
    Staff Member

    Joined:
    Mar 9, 2015
    Messages:
    3,426
    Likes Received:
    2
    Trophy Points:
    38
    cPanel Access Level:
    DataCenter Provider
Loading...

Share This Page