|
Neohapsis is currently accepting applications for employment. For more information, please visit our website www.neohapsis.com or email hr@neohapsis.com |
Re: [Full-disclosure] Cpanel Admin login (username) Disclosure
From: h4cky0u (h4cky0u.org
gmail.com)
Date: Wed Feb 08 2006 - 04:35:50 CST
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]
Yup i could reproduce that with all the sites i tried it on.
On 2/8/06, Sumit Siddharth <sumit.siddharthgmail.com> wrote:
>
> Hi, could somebody kindly confirm this.
> When a null username and a null password is provided in the cpanel
> administration, port 2082, (basic authorization prompt) and then cancelling
> the prompt the second time, the webpage presents a hyperlink to reset the
> password which contains valid username for the cpanel administration.
> Thanks
> Sumit
>
>
> --
>
> Sumit Siddharth
>
>
>
> _______________________________________________
> Full-Disclosure - We believe in it.
> Charter: http://lists.grok.org.uk/full-disclosure-charter.html
> Hosted and sponsored by Secunia - http://secunia.com/
>
>
--
http://www.h4cky0u.org
(In)Security at its best...
_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]