Arbitrary File Read and Unlink Vulnerability in cPanel (SEC-378)

Arbitrary File Read and Unlink Vulnerability in cPanel (SEC-378)

CVE-2018-20924 · HIGH Severity

AV:N/AC:L/AU:S/C:C/I:P/A:N

cPanel before 70.0.23 allows arbitrary file-read and file-unlink operations via WHM style uploads (SEC-378).

Learn more about our Web Application Penetration Testing UK.