Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
cpanel vulnerabilities and exploits
(subscribe to this query)
2.7
CVSSv3
CVE-2017-18382
cPanel prior to 68.0.15 allows use of an unreserved e-mail address in DNS zone SOA records (SEC-306).
Cpanel Cpanel
3.8
CVSSv3
CVE-2017-18384
cPanel prior to 68.0.15 allows jailed accounts to restore files that are outside of the jail (SEC-310).
Cpanel Cpanel
7.2
CVSSv3
CVE-2017-18386
cPanel prior to 68.0.15 allows arbitrary code execution via Maketext injection in PostgresAdmin (SEC-313).
Cpanel Cpanel
7.8
CVSSv3
CVE-2017-18388
cPanel prior to 68.0.15 can perform unsafe file operations because Jailshell does not set the umask (SEC-315).
Cpanel Cpanel
7.8
CVSSv3
CVE-2017-18390
cPanel prior to 68.0.15 allows code execution in the context of the root account because of weak permissions on incremental backups (SEC-322).
Cpanel Cpanel
2.5
CVSSv3
CVE-2017-18391
cPanel prior to 68.0.15 allows malicious users to read backup files because they are world-readable during a short time interval (SEC-323).
Cpanel Cpanel
2.7
CVSSv3
CVE-2017-18393
cPanel prior to 68.0.15 does not block a username of postmaster, which might allow reception of private e-mail (SEC-326).
Cpanel Cpanel
2.7
CVSSv3
CVE-2017-18395
cPanel prior to 68.0.15 does not block a username of ssl (SEC-328).
Cpanel Cpanel
5.5
CVSSv3
CVE-2017-18396
cPanel prior to 68.0.15 allows arbitrary file-read operations via Exim vdomainaliases (SEC-329).
Cpanel Cpanel
3.8
CVSSv3
CVE-2017-18398
DnsUtils in cPanel prior to 68.0.15 allows zone creation for hostname and account subdomains (SEC-331).
Cpanel Cpanel
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
authentication bypass
CVE-2024-30043
camera
CVE-2023-40404
CVE-2024-2793
client side
CVE-2024-4469
CVE-2024-3565
CVE-2024-29825
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
2
3
4
5
6
7
8
9
10
NEXT »