Vulnerabilities (CVE)

Filtered by vendor Cpanel Subscribe
Filtered by product Cgiecho
Total 3 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-2017-5616 1 Cpanel 2 Cgiecho, Cgiemail 2024-11-21 4.3 MEDIUM 6.1 MEDIUM
Cross-site scripting (XSS) vulnerability in cgiemail and cgiecho allows remote attackers to inject arbitrary web script or HTML via the addendum parameter.
CVE-2017-5615 1 Cpanel 2 Cgiecho, Cgiemail 2024-11-21 5.8 MEDIUM 6.1 MEDIUM
cgiemail and cgiecho allow remote attackers to inject HTTP headers via a newline character in the redirect location.
CVE-2017-5613 1 Cpanel 2 Cgiecho, Cgiemail 2024-11-21 6.8 MEDIUM 7.8 HIGH
Format string vulnerability in cgiemail and cgiecho allows remote attackers to execute arbitrary code via format string specifiers in a template file.