Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
cpanel cpanel vulnerabilities and exploits
(subscribe to this query)
7.5
CVSSv3
CVE-2020-26104
In cPanel prior to 88.0.3, an insecure SRS secret is used on a templated VM (SEC-552).
Cpanel Cpanel
7.5
CVSSv3
CVE-2020-26106
cPanel prior to 88.0.3 has weak permissions (world readable) for the proxy subdomains log file (SEC-558).
Cpanel Cpanel
7.5
CVSSv3
CVE-2020-26107
cPanel prior to 88.0.3, upon an upgrade, establishes predictable PowerDNS API keys (SEC-561).
Cpanel Cpanel
7.5
CVSSv3
CVE-2020-26109
cPanel prior to 88.0.13 allows bypass of a protection mechanism that attempted to restrict package modification (SEC-557).
Cpanel Cpanel
7.5
CVSSv3
CVE-2020-26112
The email quota cache in cPanel prior to 90.0.10 allows overwriting of files.
Cpanel Cpanel
7.5
CVSSv3
CVE-2016-10803
cPanel prior to 57.9999.105 allows newline injection via LOC records (CPANEL-6923).
Cpanel Cpanel
7.5
CVSSv3
CVE-2016-10790
cPanel prior to 60.0.25 does not use TLS for HTTP POSTs to listinput.cpanel.net (SEC-192).
Cpanel Cpanel
7.5
CVSSv3
CVE-2017-18476
Leech Protect in cPanel prior to 62.0.4 does not protect certain directories (SEC-205).
Cpanel Cpanel
7.5
CVSSv3
CVE-2017-18462
cPanel prior to 62.0.17 allows a CPHulk one-day ban bypass when IP based protection is enabled (SEC-224).
Cpanel Cpanel
7.5
CVSSv3
CVE-2017-18431
cPanel prior to 66.0.1 does not reliably perform suspend/unsuspend operations on accounts (CPANEL-13941).
Cpanel Cpanel
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
TCP
CVE-2024-4577
CVE-2024-2695
CVE-2024-31870
injection
CVE-2024-3813
arbitrary code
CVE-2024-27801
CVE-2024-30120
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
5
6
7
8
9
10
NEXT »