Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
cpanel cpanel vulnerabilities and exploits
(subscribe to this query)
5.4
CVSSv3
CVE-2016-10784
cPanel prior to 60.0.25 allows self XSS in the alias upload interface (SEC-184).
Cpanel Cpanel
9.8
CVSSv3
CVE-2018-20863
cPanel prior to 76.0.8 allows remote malicious users to execute arbitrary code via mailing-list attachments (SEC-452).
Cpanel Cpanel
6.1
CVSSv3
CVE-2018-20867
cPanel prior to 76.0.8 has an open redirect when resetting connections (SEC-462).
Cpanel Cpanel
7.8
CVSSv3
CVE-2018-20869
cPanel prior to 76.0.8 allows arbitrary code execution in the context of the root account via dnssec adminbin (SEC-465).
Cpanel Cpanel
5.4
CVSSv3
CVE-2018-20875
cPanel prior to 74.0.8 allows self XSS in the WHM Security Questions interface (SEC-433).
Cpanel Cpanel
6.8
CVSSv3
CVE-2018-20882
cPanel prior to 74.0.8 allows arbitrary file-write operations in the context of the root account during WHM Force Password Change (SEC-447).
Cpanel Cpanel
5.3
CVSSv3
CVE-2018-20885
cPanel prior to 74.0.0 allows Apache HTTP Server configuration injection because of DocumentRoot variable interpolation (SEC-416).
Cpanel Cpanel
4.4
CVSSv3
CVE-2018-20889
cPanel prior to 74.0.0 allows certain file-read operations via password file caching (SEC-425).
Cpanel Cpanel
4.3
CVSSv3
CVE-2018-20892
cPanel prior to 74.0.0 allows arbitrary zone file modifications because of incorrect CAA record handling (SEC-439).
Cpanel Cpanel
3.3
CVSSv3
CVE-2018-20894
cPanel prior to 74.0.0 makes web-site contents accessible to other local users via Git repositories (SEC-443).
Cpanel Cpanel
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
type confusion
IMAP
CVE-2024-36103
CVE-2024-28995
CVE-2024-37325
CVE-2024-30078
CVE-2024-30082
SQL injection
CVE-2024-30052
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
5
6
7
8
9
10
NEXT »