Improperly Implemented Security Check for Standard

CVE-2016-10825

High

8.1/10

Summary

cPanel before 55.9999.141 allows attackers to bypass a Security Policy by faking static documents (SEC-92).

Attack Complexity: LOW
Attack Vector: NETWORK
Integrity Impact: HIGH
Scope: UNCHANGED
User Interaction: NONE
Privileges Required: LOW
Confidentiality Impact: HIGH
Availability Impact: NONE

CWE-358 - Improperly Implemented Security Check for Standard

The software does not implement or incorrectly implements one or more security-relevant checks as specified by the design of a standardized algorithm, protocol, or technique.

References

Advisory Timeline

Published Aug 01, 2019

Improperly Implemented Security Check for Standard

CVE-2016-10825

Summary

CWE-358 - Improperly Implemented Security Check for Standard

References

Advisory Timeline

ChainJacking

JetBrains IDE

KICS SaaS