Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
cpanel cpanel vulnerabilities and exploits
(subscribe to this query)
7.2
CVSSv2
CVE-2017-18463
cPanel prior to 62.0.17 allows code execution in the context of the root account via a long DocumentRoot path (SEC-225).
Cpanel Cpanel
4.6
CVSSv2
CVE-2017-18383
cPanel prior to 68.0.15 writes home-directory backups to an incorrect location (SEC-309).
Cpanel Cpanel
2.1
CVSSv2
CVE-2017-18384
cPanel prior to 68.0.15 allows jailed accounts to restore files that are outside of the jail (SEC-310).
Cpanel Cpanel
2.1
CVSSv2
CVE-2017-18385
cPanel prior to 68.0.15 allows unprivileged users to access restricted directories during account restores (SEC-311).
Cpanel Cpanel
9
CVSSv2
CVE-2017-18386
cPanel prior to 68.0.15 allows arbitrary code execution via Maketext injection in PostgresAdmin (SEC-313).
Cpanel Cpanel
9
CVSSv2
CVE-2017-18387
cPanel prior to 68.0.15 allows arbitrary code execution via Maketext injection in a Reseller style upload (SEC-314).
Cpanel Cpanel
7.2
CVSSv2
CVE-2017-18388
cPanel prior to 68.0.15 can perform unsafe file operations because Jailshell does not set the umask (SEC-315).
Cpanel Cpanel
6.5
CVSSv2
CVE-2017-18389
cPanel prior to 68.0.15 allows string format injection in dovecot-xaps-plugin (SEC-318).
Cpanel Cpanel
7.2
CVSSv2
CVE-2017-18390
cPanel prior to 68.0.15 allows code execution in the context of the root account because of weak permissions on incremental backups (SEC-322).
Cpanel Cpanel
1.9
CVSSv2
CVE-2017-18391
cPanel prior to 68.0.15 allows malicious users to read backup files because they are world-readable during a short time interval (SEC-323).
Cpanel Cpanel
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-32976
CVE-2024-33557
CVE-2024-36801
CVE-2024-35654
authentication bypass
CVE-2024-24919
CSRF
code execution
CVE-2024-27348
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
2
3
4
5
6
7
8
9
10
NEXT »