Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
cpanel cpanel vulnerabilities and exploits
(subscribe to this query)
9.8
CVSSv3
CVE-2020-26108
cPanel prior to 88.0.13 mishandles file-extension dispatching, leading to code execution (SEC-488).
Cpanel Cpanel
7.5
CVSSv3
CVE-2020-26109
cPanel prior to 88.0.13 allows bypass of a protection mechanism that attempted to restrict package modification (SEC-557).
Cpanel Cpanel
6.1
CVSSv3
CVE-2020-26110
cPanel prior to 88.0.13 allows self XSS via DNS Zone Manager DNSSEC interfaces (SEC-564).
Cpanel Cpanel
7.5
CVSSv3
CVE-2020-26112
The email quota cache in cPanel prior to 90.0.10 allows overwriting of files.
Cpanel Cpanel
6.1
CVSSv3
CVE-2020-26113
cPanel prior to 90.0.10 allows self XSS via WHM Manage API Tokens interfaces (SEC-569).
Cpanel Cpanel
6.1
CVSSv3
CVE-2020-26115
cPanel prior to 90.0.10 allows self XSS via the Cron Editor interface (SEC-574).
Cpanel Cpanel
8.1
CVSSv3
CVE-2020-12785
cPanel prior to 86.0.14 allows malicious users to obtain access to the current working directory via the account backup feature (SEC-540).
Cpanel Cpanel
5.3
CVSSv3
CVE-2020-12784
cPanel prior to 86.0.14 allows remote malicious users to trigger a bandwidth suspension via mail log strings (SEC-505).
Cpanel Cpanel
6.1
CVSSv3
CVE-2020-10113
cPanel prior to 84.0.20 allows self XSS via a temporary character-set specification (SEC-515).
Cpanel Cpanel
7.2
CVSSv3
CVE-2020-10115
cPanel prior to 84.0.20, when PowerDNS is used, allows arbitrary code execution as root via dnsadmin. (SEC-537).
Cpanel Cpanel
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-33572
CVE-2024-24919
CVE-2024-0230
CVE-2024-32714
HTML injection
local file inclusion
CVE-2024-31098
CVE-2024-31244
privilege
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
9
NEXT »