Cpanel: >> Cgiecho Security Vulnerabilities
Cross-site scripting (XSS) vulnerability in cgiemail and cgiecho allows remote attackers to inject arbitrary web script or HTML via the addendum parameter.
CVSS Score
6.1
EPSS Score
0.003
Published
2017-03-03
Format string vulnerability in cgiemail and cgiecho allows remote attackers to execute arbitrary code via format string specifiers in a template file.
CVSS Score
7.8
EPSS Score
0.005
Published
2017-03-03
cgiemail and cgiecho allow remote attackers to inject HTTP headers via a newline character in the redirect location.
CVSS Score
6.1
EPSS Score
0.003
Published
2017-03-03