Researchers have uncovered a previously undisclosed vulnerability affecting the cPanel & WebHost Manager (WHM) web hosting platform. cPanel &WHM version 11.90.0.5 (90.0 Build 5) exhibits a two-factor authentication bypass flaw, vulnerable to brute force attack, resulting in a scenario where an attacker with knowledge of or access to valid credentials could bypass two-factor authentication protections on an account.
Experts Comments
Dot Your Expert Comments
Only for registered and approved experts. Please register before providing comments. Register here
Linkedin Message
@Craig Young, , Principal Security Researcher , provides expert commentary for "dot your expert comments" at @Information Security Buzz.
"This 2-factor implementation was little more than window dressing...."
#infosec #cybersecurity #isdots
https://informationsecuritybuzz.com/expert-comments/two-factor-authentication-bypass-flaw-affects-70-million-domains
Facebook Message
@Craig Young, , Principal Security Researcher , provides expert commentary for "dot your expert comments" at @Information Security Buzz.
"This 2-factor implementation was little more than window dressing...."
#infosec #cybersecurity #isdots
https://informationsecuritybuzz.com/expert-comments/two-factor-authentication-bypass-flaw-affects-70-million-domains