Back to directory

WRITEUP #1244

Finding XSS in a million websites (cPanel CVE-2023-29489)

XSSReflected XSSSecurity code review

by@infosec_au(Shubham Shah)

Program

cPanel

Published

Apr 26, 2023

Added to HackDex

Apr 27, 2023

Read Full Writeuphttps://blog.assetnote.io/2023/04/26/xss-million-websites-cpanel/

▸ RELATED WRITEUPS

Basic HTTP Authentication Risk: Uncovering pyspider Vulnerabilities

XSSReflected XSS

Front-End Frameworks: When Bypassing Built-in Sanitization Might Backfire

XSSClient-side Path Traversal

Government Emails at Risk: Critical Cross-Site Scripting Vulnerability in Roundcube Webmail

XSSSecurity code review

Studying 0days: How we hacked Anki, the world's most popular flashcard app

RCEComponents with known vulnerabilities

We hacked Anki - 0 day exploit from studying someone elses flashcards

RCEComponents with known vulnerabilities

Built with ❤️ by Shubham Rawat