Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
cpanel vulnerabilities and exploits
(subscribe to this query)
6.1
CVSSv3
CVE-2020-26113
cPanel prior to 90.0.10 allows self XSS via WHM Manage API Tokens interfaces (SEC-569).
Cpanel Cpanel
6.1
CVSSv3
CVE-2020-26114
cPanel prior to 90.0.10 allows self XSS via the Cron Jobs interface (SEC-573).
Cpanel Cpanel
6.1
CVSSv3
CVE-2020-26115
cPanel prior to 90.0.10 allows self XSS via the Cron Editor interface (SEC-574).
Cpanel Cpanel
6.1
CVSSv3
CVE-2017-5614
Open redirect vulnerability in cgiemail and cgiecho allows remote malicious users to redirect users to arbitrary web sites and conduct phishing attacks via vectors involving the (1) success or (2) failure parameter.
Cpanel Cpanel
4.1
CVSSv3
CVE-2020-29135
cPanel prior to 90.0.17 has multiple instances of URL parameter injection (SEC-567).
Cpanel Cpanel
6.1
CVSSv3
CVE-2020-29137
cPanel prior to 90.0.17 allows self-XSS via the WHM Transfer Tool interface (SEC-577).
Cpanel Cpanel
6.1
CVSSv3
CVE-2018-16236
cPanel through 74 allows XSS via a crafted filename in the logs subdirectory of a user account, because the filename is mishandled during frontend/THEME/raw/index.html rendering.
Cpanel Cpanel
6.1
CVSSv3
CVE-2018-20867
cPanel prior to 76.0.8 has an open redirect when resetting connections (SEC-462).
Cpanel Cpanel
5.4
CVSSv3
CVE-2018-20875
cPanel prior to 74.0.8 allows self XSS in the WHM Security Questions interface (SEC-433).
Cpanel Cpanel
5.4
CVSSv3
CVE-2018-20876
cPanel prior to 74.0.8 allows self XSS in the Site Software Moderation interface (SEC-434).
Cpanel Cpanel
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2023-49223
CVE-2024-0044
information disclosure
CVE-2024-35753
HTML injection
CVE-2024-21306
CVE-2024-35733
SQL injection
CVE-2024-35732
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
9
NEXT »