Proof Of Concept :
Afterwards simply check for ninjashell.php in the directory.
All cPanel versions starting from 11.25 and above have two in-built security features to prevent such attacks - security tokens and referrer security check. This means that if you are a cpanel client, you should update your
The Vulnerability has been found & Submitted to us by Ninja-Shell , An Ethical hacker, Freelance security consultant/penetration tester & Security researcher in the spare time. He has Over 12 years of experience. You can Contact him at