Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
cpanel cpanel vulnerabilities and exploits
(subscribe to this query)
7.2
CVSSv3
CVE-2020-10115
cPanel prior to 84.0.20, when PowerDNS is used, allows arbitrary code execution as root via dnsadmin. (SEC-537).
Cpanel Cpanel
5.3
CVSSv3
CVE-2020-10116
cPanel prior to 84.0.20 allows malicious users to bypass intended restrictions on features and demo accounts via WebDisk UAPI calls (SEC-541).
Cpanel Cpanel
9.1
CVSSv3
CVE-2020-10117
cPanel prior to 84.0.20 mishandles enforcement of demo checks in the Market UAPI namespace (SEC-542).
Cpanel Cpanel
9.1
CVSSv3
CVE-2020-10118
cPanel prior to 84.0.20 allows a demo account to modify files via Branding API calls (SEC-543).
Cpanel Cpanel
9.8
CVSSv3
CVE-2020-10119
cPanel prior to 84.0.20 allows a demo account to achieve remote code execution via a cpsrvd rsync shell (SEC-544).
Cpanel Cpanel
7.2
CVSSv3
CVE-2020-10120
cPanel prior to 84.0.20 allows resellers to achieve remote code execution as root via a cpsrvd rsync shell (SEC-545).
Cpanel Cpanel
9.8
CVSSv3
CVE-2020-10121
cPanel prior to 84.0.20 allows a demo account to achieve code execution via PassengerApps APIs (SEC-546).
Cpanel Cpanel
6.5
CVSSv3
CVE-2020-10122
cPanel prior to 84.0.20 allows a webmail or demo account to delete arbitrary files (SEC-547).
Cpanel Cpanel
8.8
CVSSv3
CVE-2019-20490
cPanel prior to 82.0.18 allows authentication bypass because webmail usernames are processed inconsistently (SEC-499).
Cpanel Cpanel
8.8
CVSSv3
CVE-2019-20492
cPanel prior to 82.0.18 allows authentication bypass because of misparsing of the format of the password file (SEC-516).
Cpanel Cpanel
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2023-7073
CVE-2024-5496
CVE-2024-5495
XPath injection
bypass
CVE-2024-30043
CVE-2024-24919
denial of service
CVE-2024-35468
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
9
10
NEXT »