CVE-2020-26113: XSS
First published: Fri Sep 25 2020(Updated: )
cPanel before 90.0.10 allows self XSS via WHM Manage API Tokens interfaces (SEC-569).
Credit: cve@mitre.org
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Cpanel Cpanel | <90.0.10 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
Frequently Asked Questions
What is the vulnerability ID for this cPanel vulnerability?
The vulnerability ID for this cPanel vulnerability is CVE-2020-26113.
What is the severity level of CVE-2020-26113?
CVE-2020-26113 has a severity level of medium (6.1).
How does the vulnerability CVE-2020-26113 occur?
CVE-2020-26113 occurs due to a self XSS vulnerability in the WHM Manage API Tokens interfaces in cPanel.
How can I check if my cPanel version is affected?
You can check if your cPanel version is affected by comparing it to versions up to and excluding 90.0.10.
Where can I find more information about CVE-2020-26113?
You can find more information about CVE-2020-26113 in the cPanel 90 Change Log.
- collector/nvd-index
- agent/severity
- agent/references
- agent/weakness
- agent/author
- agent/type
- agent/event
- agent/description
- agent/last-modified-date
- agent/softwarecombine
- agent/first-publish-date
- agent/tags
- collector/mitre-cve
- source/MITRE
- vendor/cpanel
- canonical/cpanel cpanel