Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
cpanel cpanel 10 vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2006-0573
Multiple cross-site scripting (XSS) vulnerabilies in cPanel 10 and previous versions allow remote malicious users to inject arbitrary web script or HTML via the (1) email parameter to (a) editquota.html or (b) dodelpop.html; (2) showtree parameter to (c) diskusage.html; or the (3...
Cpanel Cpanel 6.2
Cpanel Cpanel 6.4
Cpanel Cpanel 6.4.1
Cpanel Cpanel 6.4.2
Cpanel Cpanel 5.3
Cpanel Cpanel 6.0
Cpanel Cpanel 9.0
Cpanel Cpanel 9.1
Cpanel Cpanel 10
Cpanel Cpanel 5.0
Cpanel Cpanel 6.4.2 Stable 48
Cpanel Cpanel 7.0
Cpanel Cpanel 8.0
NA
CVE-2006-4293
Multiple cross-site scripting (XSS) vulnerabilities in cPanel 10 allow remote malicious users to inject arbitrary web script or HTML via the (1) dir parameter in dohtaccess.html, or the (2) file parameter in (a) editit.html or (b) showfile.html.
Cpanel Cpanel 10
3 EDB exploits
NA
CVE-2006-0574
Cross-site scripting (XSS) vulnerability in mime/handle.html in cPanel 10 allows remote malicious users to inject arbitrary web script or HTML via the (1) file extension or (2) mime-type.
Cpanel Cpanel 10
NA
CVE-2006-5883
Multiple cross-site scripting (XSS) vulnerabilities in cPanel 10 allow remote authenticated users to inject arbitrary web script or HTML via the (1) dir parameter in (a) seldir.html, and the (2) user and (3) dir parameters in (b) newuser.html.
Cpanel Cpanel 10
2 EDB exploits
NA
CVE-2006-3337
Cross-site scripting (XSS) vulnerability in frontend/x/files/select.html in cPanel 10.8.2-CURRENT 118 and previous versions allows remote malicious users to inject arbitrary web script or HTML via the file parameter.
Cpanel Cpanel
1 EDB exploit
NA
CVE-2004-1875
Multiple cross-site scripting (XSS) vulnerabilities in cPanel 9.1.0-R85 allow remote malicious users to inject arbitrary web script or HTML via the (1) email parameter to testfile.html, (2) file parameter to erredit.html, (3) dns parameter to dnslook.html, (4) account parameter t...
Cpanel Cpanel 9.1.0 R85
1 EDB exploit
NA
CVE-2007-1455
Multiple absolute path traversal vulnerabilities in Fantastico, as used with cPanel 10.x, allow remote authenticated users to include and execute arbitrary local files via (1) the userlanguage parameter to includes/load_language.php or (2) the fantasticopath parameter to includes...
Cpanel-host Fantastico De Luxe
1 EDB exploit
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-27322
administrator privileges
CVE-2024-1579
hardcoded
CVE-2023-20198
CVE-2024-33587
CVE-2024-33449
CVE-2024-4308
HTML injection
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started