Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
cpanel vulnerabilities and exploits
(subscribe to this query)
6.5
CVSSv2
CVE-2018-20895
In cPanel prior to 71.9980.37, API tokens retain ACLs after those ACLs are removed from the corresponding accounts (SEC-393).
Cpanel Cpanel
4.3
CVSSv2
CVE-2018-20899
cPanel prior to 71.9980.37 allows stored XSS in the WHM cPAddons installation interface (SEC-398).
Cpanel Cpanel
4.3
CVSSv2
CVE-2018-20900
cPanel prior to 71.9980.37 allows stored XSS in the YUM autorepair functionality (SEC-399).
Cpanel Cpanel
4.3
CVSSv2
CVE-2018-20903
cPanel prior to 71.9980.37 allows self XSS in the WHM Backup Configuration interface (SEC-421).
Cpanel Cpanel
4
CVSSv2
CVE-2018-20904
cPanel prior to 71.9980.37 allows malicious users to make API calls that bypass the cron feature restriction (SEC-427).
Cpanel Cpanel
4
CVSSv2
CVE-2018-20906
cPanel prior to 71.9980.37 allows malicious users to make API calls that bypass the images feature restriction (SEC-430).
Cpanel Cpanel
2.1
CVSSv2
CVE-2018-20908
cPanel prior to 71.9980.37 allows arbitrary file-read operations during pkgacct custom template handling (SEC-435).
Cpanel Cpanel
3.6
CVSSv2
CVE-2018-20909
cPanel prior to 70.0.23 allows arbitrary file-chmod operations during legacy incremental backups (SEC-338).
Cpanel Cpanel
6.5
CVSSv2
CVE-2018-20911
cPanel prior to 70.0.23 allows code execution because "." is in @INC during a Perl syntax check of cpaddonsup (SEC-359).
Cpanel Cpanel
6.5
CVSSv2
CVE-2018-20912
cPanel prior to 70.0.23 allows demo accounts to execute code via awstats (SEC-362).
Cpanel Cpanel
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
type confusion
IMAP
CVE-2024-36103
CVE-2024-28995
CVE-2024-37325
CVE-2024-30078
CVE-2024-30082
SQL injection
CVE-2024-30052
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
9
10
NEXT »