Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
cpanel cpanel vulnerabilities and exploits
(subscribe to this query)
9
CVSSv2
CVE-2020-10120
cPanel prior to 84.0.20 allows resellers to achieve remote code execution as root via a cpsrvd rsync shell (SEC-545).
Cpanel Cpanel
6.4
CVSSv2
CVE-2020-10122
cPanel prior to 84.0.20 allows a webmail or demo account to delete arbitrary files (SEC-547).
Cpanel Cpanel
2.1
CVSSv2
CVE-2018-20870
The WebDAV transport feature in cPanel prior to 76.0.8 enables debug logging (SEC-467).
Cpanel Cpanel
3.5
CVSSv2
CVE-2018-20875
cPanel prior to 74.0.8 allows self XSS in the WHM Security Questions interface (SEC-433).
Cpanel Cpanel
3.5
CVSSv2
CVE-2018-20878
cPanel prior to 74.0.8 allows stored XSS in WHM "File and Directory Restoration" interface (SEC-441).
Cpanel Cpanel
3.5
CVSSv2
CVE-2018-20884
cPanel prior to 74.0.0 allows stored XSS in the WHM File Restoration interface (SEC-367).
Cpanel Cpanel
4.6
CVSSv2
CVE-2018-20886
cPanel prior to 74.0.0 insecurely stores phpMyAdmin session files (SEC-418).
Cpanel Cpanel
3.6
CVSSv2
CVE-2018-20889
cPanel prior to 74.0.0 allows certain file-read operations via password file caching (SEC-425).
Cpanel Cpanel
4
CVSSv2
CVE-2018-20892
cPanel prior to 74.0.0 allows arbitrary zone file modifications because of incorrect CAA record handling (SEC-439).
Cpanel Cpanel
2.1
CVSSv2
CVE-2018-20894
cPanel prior to 74.0.0 makes web-site contents accessible to other local users via Git repositories (SEC-443).
Cpanel Cpanel
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2023-7073
CVE-2024-5496
CVE-2024-5495
XPath injection
bypass
CVE-2024-30043
CVE-2024-24919
denial of service
CVE-2024-35468
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
NEXT »