Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
cpanel vulnerabilities and exploits
(subscribe to this query)
3.5
CVSSv2
CVE-2019-14386
cPanel prior to 82.0.2 has stored XSS in the WHM Tomcat Manager interface (SEC-504).
Cpanel Cpanel
5
CVSSv2
CVE-2019-14388
cPanel prior to 82.0.2 allows unauthenticated file creation because Exim log parsing is mishandled (SEC-507).
Cpanel Cpanel
2.1
CVSSv2
CVE-2019-14389
cPanel prior to 82.0.2 allows local users to discover the MySQL root password (SEC-510).
Cpanel Cpanel
2.1
CVSSv2
CVE-2019-14391
cPanel prior to 82.0.2 does not properly enforce Reseller package creation ACLs (SEC-514).
Cpanel Cpanel
6.5
CVSSv2
CVE-2019-14392
cPanel prior to 80.0.22 allows remote code execution by a demo account because of incorrect URI dispatching (SEC-501).
Cpanel Cpanel
4.6
CVSSv2
CVE-2019-14393
cPanel prior to 80.0.5 allows local code execution in the context of a different cPanel account because of insecure cpphp execution (SEC-486).
Cpanel Cpanel
2.1
CVSSv2
CVE-2019-14394
cPanel prior to 80.0.5 allows unsafe file operations in the context of the root account via the fetch_ssl_certificates_for_fqdns API (SEC-489).
Cpanel Cpanel
2.1
CVSSv2
CVE-2019-14395
cPanel prior to 80.0.5 uses world-readable permissions for the Queueprocd log (SEC-494).
Cpanel Cpanel
2.1
CVSSv2
CVE-2019-14396
API Analytics adminbin in cPanel prior to 80.0.5 allows spoofed insertions of log data (SEC-495).
Cpanel Cpanel
5
CVSSv2
CVE-2019-14397
cPanel prior to 80.0.5 allows demo accounts to modify arbitrary files via the extractfile API1 call (SEC-496).
Cpanel Cpanel
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-23692
CVE-2012-1823
memory leak
CVE-2024-0627
CVE-2024-31402
privilege escalation
CVE-2024-36418
remote code execution
CVE-2024-27844
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
7
8
9
10
NEXT »