CVE-2017-18406

Severity CVSS v4.0:
Pending analysis
Type:
CWE-89 SQL Injection
Publication date:
02/08/2019
Last modified:
12/08/2019

Description

cPanel before 67.9999.103 allows SQL injection during eximstats processing (SEC-276).

Vulnerable products and versions

CPE From Up to
cpe:2.3:a:cpanel:cpanel:*:*:*:*:*:*:*:* 63.9999.74 (including) 64.0.40 (excluding)
cpe:2.3:a:cpanel:cpanel:*:*:*:*:*:*:*:* 65.9999.38 (including) 66.0.23 (excluding)
cpe:2.3:a:cpanel:cpanel:*:*:*:*:*:*:*:* 67.9999.64 (including) 67.9999.103 (excluding)