Absolute path traversal vulnerability in the Disk Usage module (frontend/x/diskusage/index.html) in cPanel 11.18.3 allows remote attackers to list arbitrary directories via the showtree parameter.Referenceshttp://www.securityfocus.com/archive/1/489747/100/0/threadedhttps://exchange.xforce.ibmcloud.com/vulnerabilities/41266http://osvdb.org/51582http://www.securityfocus.com/bid/28300/exploithttp://www.securityfocus.com/bid/28300
