Signature Detail

HTTP: cPanel Pro Cross Site Request Forgery

This signature detects attempts to exploit a known vulnerability in cPanel Pro. An attacker can craft a url that when followed by a user can modify arbitrary records in the database, including user accounts and administrator privileges. A remote attacker can exploit this vulnerability by enticing a user to follow crafted URI, upon successful exploitation the attacker can login to the administrator console with the created account and execute commands with the privileges of the affected service.

References

• URL: http://cpanel.net/