Arbitrary File-Read Vulnerability in cPanel (SEC-345)

Arbitrary File-Read Vulnerability in cPanel (SEC-345)

CVE-2017-18405 · LOW Severity

AV:L/AC:L/AU:N/C:P/I:N/A:N

cPanel before 68.0.15 allows arbitrary file-read operations because of the backup .htaccess modification logic (SEC-345).

Learn more about our Web Application Penetration Testing UK.