Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
cpanel cpanel vulnerabilities and exploits
(subscribe to this query)
9.8
CVSSv3
CVE-2020-26101
In cPanel prior to 88.0.3, insecure RNDC credentials are used for BIND on a templated VM (SEC-549).
Cpanel Cpanel
7.5
CVSSv3
CVE-2020-26102
In cPanel prior to 88.0.3, an insecure auth policy API key is used by Dovecot on a templated VM (SEC-550).
Cpanel Cpanel
7.5
CVSSv3
CVE-2020-26103
In cPanel prior to 88.0.3, an insecure site password is used for Mailman on a templated VM (SEC-551).
Cpanel Cpanel
7.5
CVSSv3
CVE-2020-26104
In cPanel prior to 88.0.3, an insecure SRS secret is used on a templated VM (SEC-552).
Cpanel Cpanel
9.8
CVSSv3
CVE-2020-26105
In cPanel prior to 88.0.3, insecure chkservd test credentials are used on a templated VM (SEC-554).
Cpanel Cpanel
7.5
CVSSv3
CVE-2020-26106
cPanel prior to 88.0.3 has weak permissions (world readable) for the proxy subdomains log file (SEC-558).
Cpanel Cpanel
7.5
CVSSv3
CVE-2020-26107
cPanel prior to 88.0.3, upon an upgrade, establishes predictable PowerDNS API keys (SEC-561).
Cpanel Cpanel
9.8
CVSSv3
CVE-2020-26108
cPanel prior to 88.0.13 mishandles file-extension dispatching, leading to code execution (SEC-488).
Cpanel Cpanel
7.5
CVSSv3
CVE-2020-26109
cPanel prior to 88.0.13 allows bypass of a protection mechanism that attempted to restrict package modification (SEC-557).
Cpanel Cpanel
6.1
CVSSv3
CVE-2020-26110
cPanel prior to 88.0.13 allows self XSS via DNS Zone Manager DNSSEC interfaces (SEC-564).
Cpanel Cpanel
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2023-30310
CVE-2024-21683
CVE-2024-22187
chrome
deserialization
XPath injection
CVE-2024-27842
denial of service
CVE-2024-24851
google
CVE-2024-35400
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
NEXT »