Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
cpanel vulnerabilities and exploits
(subscribe to this query)
2.1
CVSSv2
CVE-2017-18405
cPanel prior to 68.0.15 allows arbitrary file-read operations because of the backup .htaccess modification logic (SEC-345).
Cpanel Cpanel
2.1
CVSSv2
CVE-2017-18424
In cPanel prior to 66.0.2, the Apache HTTP Server configuration file is changed to world-readable when rebuilt (SEC-274).
Cpanel Cpanel
4
CVSSv2
CVE-2017-18426
cPanel prior to 66.0.2 allows resellers to read other accounts' domain log files (SEC-288).
Cpanel Cpanel
2.1
CVSSv2
CVE-2017-18429
In cPanel prior to 66.0.2, Apache HTTP Server SSL domain logs can persist on disk after an account termination (SEC-291).
Cpanel Cpanel
2.1
CVSSv2
CVE-2017-18432
In cPanel prior to 64.0.21, Horde MySQL to SQLite conversion can leak a database password (SEC-234).
Cpanel Cpanel
7.5
CVSSv2
CVE-2017-18435
cPanel prior to 64.0.21 allows demo accounts to execute code via the BoxTrapper API (SEC-238).
Cpanel Cpanel
3.6
CVSSv2
CVE-2017-18437
cPanel prior to 64.0.21 allows a Webmail account to execute code via forwarders (SEC-240).
Cpanel Cpanel
2.1
CVSSv2
CVE-2017-18465
cPanel prior to 62.0.17 does not have a sufficient list of reserved usernames (SEC-227).
Cpanel Cpanel
6.5
CVSSv2
CVE-2017-18468
cPanel prior to 62.0.17 allows demo accounts to execute code via the Htaccess::setphppreference API (SEC-232).
Cpanel Cpanel
4
CVSSv2
CVE-2017-18470
cPanel prior to 62.0.4 has a fixed password for the Munin MySQL test account (SEC-196).
Cpanel Cpanel
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-3080
log injection
CVE-2024-6041
CVE-2024-37661
XML external entity
CVE-2024-0845
privilege escalation
CVE-2023-37057
CVE-2024-27801
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
NEXT »