Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
cpanel cpanel vulnerabilities and exploits
(subscribe to this query)
8.8
CVSSv3
CVE-2019-20490
cPanel prior to 82.0.18 allows authentication bypass because webmail usernames are processed inconsistently (SEC-499).
Cpanel Cpanel
8.8
CVSSv3
CVE-2019-20492
cPanel prior to 82.0.18 allows authentication bypass because of misparsing of the format of the password file (SEC-516).
Cpanel Cpanel
8.8
CVSSv3
CVE-2019-17375
cPanel prior to 82.0.15 allows API token credentials to persist after an account has been renamed or terminated (SEC-517).
Cpanel Cpanel
8.8
CVSSv3
CVE-2016-10802
cPanel prior to 58.0.4 allows code execution in the context of other user accounts through the PHP CGI handler (SEC-142).
Cpanel Cpanel
8.8
CVSSv3
CVE-2016-10808
In cPanel prior to 57.9999.54, /scripts/addpop and /scripts/delpop exposed TTYs (SEC-113).
Cpanel Cpanel
8.8
CVSSv3
CVE-2016-10809
In cPanel prior to 57.9999.54, /scripts/checkinfopages exposed a TTY to an unprivileged process (SEC-114).
Cpanel Cpanel
8.8
CVSSv3
CVE-2016-10810
In cPanel prior to 57.9999.54, /scripts/maildir_converter exposed a TTY to an unprivileged process (SEC-115).
Cpanel Cpanel
8.8
CVSSv3
CVE-2016-10801
cPanel prior to 58.0.4 has improper session handling for shared users (SEC-139).
Cpanel Cpanel
8.8
CVSSv3
CVE-2016-10805
cPanel prior to 57.9999.54 allows demo accounts to execute arbitrary code via ajax_maketext_syntax_util.pl (SEC-109).
Cpanel Cpanel
8.8
CVSSv3
CVE-2016-10811
In cPanel prior to 57.9999.54, /scripts/unsuspendacct exposed TTYs (SEC-116).
Cpanel Cpanel
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-28995
CVE-2024-36680
CVE-2024-35537
unauthorized
CVE-2024-21518
CVE-2024-37673
cross-site scripting
SSRF
CVE-2024-6241
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
NEXT »