Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
cpanel cpanel vulnerabilities and exploits
(subscribe to this query)
4
CVSSv2
CVE-2017-18455
In cPanel prior to 62.0.17, addon domain conversion did not require a package for resellers (SEC-208).
Cpanel Cpanel
4.9
CVSSv2
CVE-2017-18457
cPanel prior to 62.0.17 allows arbitrary file-read operations via WHM /styled/ URLs (SEC-218).
Cpanel Cpanel
7.2
CVSSv2
CVE-2017-18459
cPanel prior to 62.0.17 allows arbitrary code execution during account modification (SEC-220).
Cpanel Cpanel
7.2
CVSSv2
CVE-2017-18460
cPanel prior to 62.0.17 allows arbitrary code execution during automatic SSL installation (SEC-221).
Cpanel Cpanel
5
CVSSv2
CVE-2017-18462
cPanel prior to 62.0.17 allows a CPHulk one-day ban bypass when IP based protection is enabled (SEC-224).
Cpanel Cpanel
7.2
CVSSv2
CVE-2017-18463
cPanel prior to 62.0.17 allows code execution in the context of the root account via a long DocumentRoot path (SEC-225).
Cpanel Cpanel
2.1
CVSSv2
CVE-2017-18465
cPanel prior to 62.0.17 does not have a sufficient list of reserved usernames (SEC-227).
Cpanel Cpanel
4
CVSSv2
CVE-2017-18466
cPanel prior to 62.0.17 does not properly recognize domain ownership during addition of parked domains to a mail configuration (SEC-228).
Cpanel Cpanel
6.5
CVSSv2
CVE-2017-18468
cPanel prior to 62.0.17 allows demo accounts to execute code via the Htaccess::setphppreference API (SEC-232).
Cpanel Cpanel
4
CVSSv2
CVE-2017-18470
cPanel prior to 62.0.4 has a fixed password for the Munin MySQL test account (SEC-196).
Cpanel Cpanel
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
firewall
CVE-2024-35649
stored XSS
CVE-2022-28654
CVE-2020-35153
CVE-2024-27348
CVE-2022-28652
local users
CVE-2017-3506
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
9
10
NEXT »