Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
cpanel cpanel 10 vulnerabilities and exploits
(subscribe to this query)
4.3
CVSSv2
CVE-2006-0573
Multiple cross-site scripting (XSS) vulnerabilies in cPanel 10 and previous versions allow remote malicious users to inject arbitrary web script or HTML via the (1) email parameter to (a) editquota.html or (b) dodelpop.html; (2) showtree parameter to (c) diskusage.html; or the (3...
Cpanel Cpanel 6.2
Cpanel Cpanel 6.4
Cpanel Cpanel 6.4.1
Cpanel Cpanel 6.4.2
Cpanel Cpanel 5.3
Cpanel Cpanel 6.0
Cpanel Cpanel 9.0
Cpanel Cpanel 9.1
Cpanel Cpanel 10
Cpanel Cpanel 5.0
Cpanel Cpanel 6.4.2 Stable 48
Cpanel Cpanel 7.0
Cpanel Cpanel 8.0
4.3
CVSSv2
CVE-2006-4293
Multiple cross-site scripting (XSS) vulnerabilities in cPanel 10 allow remote malicious users to inject arbitrary web script or HTML via the (1) dir parameter in dohtaccess.html, or the (2) file parameter in (a) editit.html or (b) showfile.html.
Cpanel Cpanel 10
3 EDB exploits
3.5
CVSSv2
CVE-2006-5883
Multiple cross-site scripting (XSS) vulnerabilities in cPanel 10 allow remote authenticated users to inject arbitrary web script or HTML via the (1) dir parameter in (a) seldir.html, and the (2) user and (3) dir parameters in (b) newuser.html.
Cpanel Cpanel 10
2 EDB exploits
4.3
CVSSv2
CVE-2006-0574
Cross-site scripting (XSS) vulnerability in mime/handle.html in cPanel 10 allows remote malicious users to inject arbitrary web script or HTML via the (1) file extension or (2) mime-type.
Cpanel Cpanel 10
2.6
CVSSv2
CVE-2006-3337
Cross-site scripting (XSS) vulnerability in frontend/x/files/select.html in cPanel 10.8.2-CURRENT 118 and previous versions allows remote malicious users to inject arbitrary web script or HTML via the file parameter.
Cpanel Cpanel
1 EDB exploit
9.3
CVSSv2
CVE-2004-1875
Multiple cross-site scripting (XSS) vulnerabilities in cPanel 9.1.0-R85 allow remote malicious users to inject arbitrary web script or HTML via the (1) email parameter to testfile.html, (2) file parameter to erredit.html, (3) dns parameter to dnslook.html, (4) account parameter t...
Cpanel Cpanel 9.1.0 R85
1 EDB exploit
9
CVSSv2
CVE-2007-1455
Multiple absolute path traversal vulnerabilities in Fantastico, as used with cPanel 10.x, allow remote authenticated users to include and execute arbitrary local files via (1) the userlanguage parameter to includes/load_language.php or (2) the fantasticopath parameter to includes...
Cpanel-host Fantastico De Luxe
1 EDB exploit
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2023-7073
CVE-2024-5496
CVE-2024-5495
XPath injection
bypass
CVE-2024-30043
CVE-2024-24919
denial of service
CVE-2024-35468
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started