Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
cpanel vulnerabilities and exploits
(subscribe to this query)
5.4
CVSSv3
CVE-2018-20878
cPanel prior to 74.0.8 allows stored XSS in WHM "File and Directory Restoration" interface (SEC-441).
Cpanel Cpanel
4.3
CVSSv3
CVE-2018-20892
cPanel prior to 74.0.0 allows arbitrary zone file modifications because of incorrect CAA record handling (SEC-439).
Cpanel Cpanel
3.9
CVSSv3
CVE-2018-20896
cPanel prior to 71.9980.37 allows code injection in the WHM cPAddons interface (SEC-394).
Cpanel Cpanel
6.1
CVSSv3
CVE-2018-20899
cPanel prior to 71.9980.37 allows stored XSS in the WHM cPAddons installation interface (SEC-398).
Cpanel Cpanel
5.5
CVSSv3
CVE-2018-20902
cPanel prior to 71.9980.37 allows malicious users to read root's crontab file by leveraging ClamAV installation (SEC-408).
Cpanel Cpanel
4.3
CVSSv3
CVE-2018-20904
cPanel prior to 71.9980.37 allows malicious users to make API calls that bypass the cron feature restriction (SEC-427).
Cpanel Cpanel
4.3
CVSSv3
CVE-2018-20907
cPanel prior to 71.9980.37 does not enforce the Mime::list_hotlinks API feature restriction (SEC-432).
Cpanel Cpanel
7.1
CVSSv3
CVE-2018-20909
cPanel prior to 70.0.23 allows arbitrary file-chmod operations during legacy incremental backups (SEC-338).
Cpanel Cpanel
6.3
CVSSv3
CVE-2018-20912
cPanel prior to 70.0.23 allows demo accounts to execute code via awstats (SEC-362).
Cpanel Cpanel
6.1
CVSSv3
CVE-2018-20928
cPanel prior to 70.0.23 allows stored XSS via the cpaddons vendor interface (SEC-391).
Cpanel Cpanel
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-3380
CVE-2024-1694
local file inclusion
CVE-2024-5645
CVE-2024-24919
XSS
CVE-2024-36774
CVE-2024-21306
SQL
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
9
10
NEXT »