cPanel before 82.0.15 allows self XSS in the SSL Key Delete interface (SEC-526).Referenceshttps://documentation.cpanel.net/display/CL/82+Change+Log
