CVE-2018-20914

Summary

In cPanel before 70.0.23, OpenID providers can inject arbitrary data into cPanel session files (SEC-368).

Affected Software

VendorProductVersion RangeStatus
n/an/an/aaffected

Weaknesses

  • n/a

ADP Enrichment

CVE Program Container

Additional References

References