Vulnerability Database

296,317

Total vulnerabilities in the database

CVE-2004-1770

The login page for cPanel 9.1.0, and possibly other versions, allows remote attackers to execute arbitrary code via shell metacharacters in the user parameter.

  • Published: Mar 11, 2004
  • Updated: Apr 13, 2023
  • CVE: CVE-2004-1770
  • Severity: High
  • Exploit:

CVSS v2:

  • Severity: High
  • Score: 10
  • AV:N/AC:L/Au:N/C:C/I:C/A:C

No CWE or OWASP classifications available.

Software From Fixed in
cpanel / cpanel 9.0 9.0.x
cpanel / cpanel 6.4 6.4.x
cpanel / cpanel 5.3 5.3.x
cpanel / cpanel 5.0 5.0.x
cpanel / cpanel 6.0 6.0.x
cpanel / cpanel 6.4.1 6.4.1.x
cpanel / cpanel 6.4.2_stable_48 6.4.2_stable_48.x
cpanel / cpanel 6.4.2 6.4.2.x
cpanel / cpanel 8.0 8.0.x
cpanel / cpanel 9.1 9.1.x
cpanel / cpanel 6.2 6.2.x
cpanel / cpanel 7.0 7.0.x