Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
cpanel vulnerabilities and exploits
(subscribe to this query)
7.5
CVSSv3
CVE-2017-18431
cPanel prior to 66.0.1 does not reliably perform suspend/unsuspend operations on accounts (CPANEL-13941).
Cpanel Cpanel
7.8
CVSSv3
CVE-2017-18432
In cPanel prior to 64.0.21, Horde MySQL to SQLite conversion can leak a database password (SEC-234).
Cpanel Cpanel
8.8
CVSSv3
CVE-2017-18433
cPanel prior to 64.0.21 allows code execution by webmail and demo accounts via a store_filter API call (SEC-236).
Cpanel Cpanel
7.8
CVSSv3
CVE-2017-18434
cPanel prior to 64.0.21 allows code execution in the context of the root account via a SET_VHOST_LANG_PACKAGE multilang adminbin call (SEC-237).
Cpanel Cpanel
7.3
CVSSv3
CVE-2017-18435
cPanel prior to 64.0.21 allows demo accounts to execute code via the BoxTrapper API (SEC-238).
Cpanel Cpanel
3.5
CVSSv3
CVE-2017-18436
cPanel prior to 64.0.21 allows demo accounts to read files via a Fileman::getfileactions API2 call (SEC-239).
Cpanel Cpanel
4.4
CVSSv3
CVE-2017-18437
cPanel prior to 64.0.21 allows a Webmail account to execute code via forwarders (SEC-240).
Cpanel Cpanel
6.3
CVSSv3
CVE-2017-18439
cPanel prior to 64.0.21 allows demo accounts to execute code via an ImageManager_dimensions API call (SEC-243).
Cpanel Cpanel
4.3
CVSSv3
CVE-2017-18440
cPanel prior to 64.0.21 allows demo users to execute traceroute via api2 (SEC-244).
Cpanel Cpanel
5
CVSSv3
CVE-2017-18441
cPanel prior to 64.0.21 allows demo accounts to redirect web traffic (SEC-245).
Cpanel Cpanel
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2023-40673
CVE-2024-36674
CVE-2024-27348
unspecified
CVE-2024-24919
CVE-2024-4870
malicious code
CVE-2024-2019
hard-coded
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
9
NEXT »