Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
cpanel cpanel vulnerabilities and exploits
(subscribe to this query)
4.3
CVSSv2
CVE-2019-20493
cPanel prior to 82.0.18 allows self-XSS because JSON string escaping is mishandled (SEC-520).
Cpanel Cpanel
2.1
CVSSv2
CVE-2019-20494
In cPanel prior to 82.0.18, Cpanel::Rand::Get can produce a predictable series of numbers (SEC-525).
Cpanel Cpanel
4
CVSSv2
CVE-2019-20495
cPanel prior to 82.0.18 allows malicious users to read an arbitrary database via MySQL dump streaming (SEC-531).
Cpanel Cpanel
4.9
CVSSv2
CVE-2019-20496
cPanel prior to 82.0.18 allows malicious users to conduct arbitrary chown operations as root during log processing (SEC-532).
Cpanel Cpanel
3.5
CVSSv2
CVE-2019-20497
cPanel prior to 82.0.18 allows stored XSS via WHM Backup Restoration (SEC-533).
Cpanel Cpanel
7.5
CVSSv2
CVE-2019-20498
cPanel prior to 82.0.18 allows WebDAV authentication bypass because the connection-sharing logic is incorrect (SEC-534).
Cpanel Cpanel
4.3
CVSSv2
CVE-2020-26111
cPanel prior to 90.0.10 allows self XSS via the WHM Edit DNS Zone interface (SEC-566).
Cpanel Cpanel
7.5
CVSSv2
CVE-2020-26098
cPanel prior to 88.0.3 mishandles the Exim filter path, leading to remote code execution (SEC-485).
Cpanel Cpanel
5
CVSSv2
CVE-2020-26099
cPanel prior to 88.0.3 allows malicious users to bypass the SMTP greylisting protection mechanism (SEC-491).
Cpanel Cpanel
7.5
CVSSv2
CVE-2020-26100
chsh in cPanel prior to 88.0.3 allows a Jailshell escape (SEC-497).
Cpanel Cpanel
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-4946
CVE-2024-30309
CVE-2024-4761
CVE-2024-30051
type confusion
memory leak
CVE-2024-30293
reflected XSS
CVE-2024-3126
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
9
NEXT »