Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
cpanel cpanel vulnerabilities and exploits
(subscribe to this query)
3.8
CVSSv3
CVE-2018-20927
cPanel prior to 70.0.23 allows jailshell escape because of incorrect crontab parsing (SEC-382).
Cpanel Cpanel
5.4
CVSSv3
CVE-2018-20935
cPanel prior to 70.0.23 allows stored XSS in via a WHM "Reset a DNS Zone" action (SEC-412).
Cpanel Cpanel
3.3
CVSSv3
CVE-2018-20936
cPanel prior to 68.0.27 allows malicious users to read the SRS secret via exim.conf (SEC-308).
Cpanel Cpanel
3.3
CVSSv3
CVE-2018-20940
cPanel prior to 68.0.27 allows malicious users to read root's crontab file during a short time interval upon the enabling of backups (SEC-342).
Cpanel Cpanel
6.1
CVSSv3
CVE-2018-20949
cPanel prior to 68.0.27 allows self XSS in WHM Apache Configuration Include Editor (SEC-385).
Cpanel Cpanel
7.5
CVSSv3
CVE-2020-26099
cPanel prior to 88.0.3 allows malicious users to bypass the SMTP greylisting protection mechanism (SEC-491).
Cpanel Cpanel
9.8
CVSSv3
CVE-2020-26105
In cPanel prior to 88.0.3, insecure chkservd test credentials are used on a templated VM (SEC-554).
Cpanel Cpanel
9.8
CVSSv3
CVE-2020-26108
cPanel prior to 88.0.13 mishandles file-extension dispatching, leading to code execution (SEC-488).
Cpanel Cpanel
6.1
CVSSv3
CVE-2020-26111
cPanel prior to 90.0.10 allows self XSS via the WHM Edit DNS Zone interface (SEC-566).
Cpanel Cpanel
6.1
CVSSv3
CVE-2020-26114
cPanel prior to 90.0.10 allows self XSS via the Cron Jobs interface (SEC-573).
Cpanel Cpanel
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
authentication bypass
CVE-2024-30051
remote
CVE-2024-27954
CVE-2023-51483
CVE-2023-47782
SSRF
CVE-2024-24715
CVE-2023-52424
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
9
NEXT »