Please whitelist cPanel in your adblocker so that you’re able to see our version release promotions, thanks!

The Community Forums

Interact with an entire community of cPanel & WHM users!

Cpanel 11.X Edit E-mail Cross Site Request Forgery exploit

Discussion in 'Security' started by ASTRAPI, Nov 22, 2010.

  1. ASTRAPI

    ASTRAPI Well-Known Member

    Joined:
    Jul 8, 2008
    Messages:
    321
    Likes Received:
    0
    Trophy Points:
    66
    A new exploit is out a few hours ago :(

    Cpanel 11.X Edit E-mail Cross Site Request Forgery exploit

    How can i protect from this?

    I do not use cpanel emails at all as i have only one account and i use a gmail account and not user@mydomain.com account.....

    What a user can do with this and how can i identify it?

    I am using ssl also on the whm login... Does that helps on this case?

    Thank you
     
    #1 ASTRAPI, Nov 22, 2010
    Last edited: Nov 22, 2010
  2. cPanelNick

    cPanelNick Administrator
    Staff Member

    Joined:
    Mar 9, 2015
    Messages:
    3,480
    Likes Received:
    30
    Trophy Points:
    158
    cPanel Access Level:
    DataCenter Provider
    #2 cPanelNick, Nov 22, 2010
  3. ASTRAPI

    ASTRAPI Well-Known Member

    Joined:
    Jul 8, 2008
    Messages:
    321
    Likes Received:
    0
    Trophy Points:
    66
    Do i have to use the same setting to prevent this on the new 11.28 also?

    Or the new version do not extra settings to prevent this?

    Thank you
     
    #3 ASTRAPI, Nov 22, 2010
  4. cPanelNick

    cPanelNick Administrator
    Staff Member

    Joined:
    Mar 9, 2015
    Messages:
    3,480
    Likes Received:
    30
    Trophy Points:
    158
    cPanel Access Level:
    DataCenter Provider
    #4 cPanelNick, Nov 22, 2010
(You must log in or sign up to post here.)
Loading...
Similar Threads - Cpanel Edit mail
  1. BrettK

    Edit valiases, not showing up in cPanel

    BrettK, Oct 15, 2018, in forum: E-mail Discussion
    Replies:
    2
    Views:
    50
    cPanelLauren
    Oct 17, 2018 at 12:03 PM
  2. vacancy

    SOLVED [CPANEL-20849] MultiPHP INI Editor is slow in version 72

    vacancy, Jun 26, 2018, in forum: EasyApache
    Replies:
    3
    Views:
    258
    cPanelMichael
    Jun 27, 2018
  3. linux4me2

    SOLVED cPanel & WHM 70: Edit Package From List Accounts?

    linux4me2, May 9, 2018, in forum: User Experience
    Replies:
    3
    Views:
    183
    Infopro
    May 9, 2018
  4. umer Shahzad

    File Uploads via cPanel MultiPHP INI Editor

    umer Shahzad, Feb 6, 2018, in forum: EasyApache
    Replies:
    1
    Views:
    184
    cPanelMichael
    Feb 12, 2018
  5. SherifBuzz

    /usr/local/cpanel/cgi-sys/php5 is no longer editable

    SherifBuzz, Jan 7, 2018, in forum: EasyApache
    Replies:
    2
    Views:
    320
    cPanelMichael
    Jan 8, 2018

Share This Page

  1. This site uses cookies to help personalise content, tailor your experience and to keep you logged in if you register.
    By continuing to use this site, you are consenting to our use of cookies.
    Accept Learn More...
    Dismiss Notice