Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
cpanel cpanel vulnerabilities and exploits
(subscribe to this query)
2.7
CVSSv3
CVE-2017-18393
cPanel prior to 68.0.15 does not block a username of postmaster, which might allow reception of private e-mail (SEC-326).
Cpanel Cpanel
2.7
CVSSv3
CVE-2017-18394
cPanel prior to 68.0.15 does not have a sufficient list of reserved usernames (SEC-327).
Cpanel Cpanel
2.7
CVSSv3
CVE-2017-18395
cPanel prior to 68.0.15 does not block a username of ssl (SEC-328).
Cpanel Cpanel
5.5
CVSSv3
CVE-2017-18396
cPanel prior to 68.0.15 allows arbitrary file-read operations via Exim vdomainaliases (SEC-329).
Cpanel Cpanel
3.3
CVSSv3
CVE-2017-18397
cPanel prior to 68.0.15 does not preserve permissions for local backup transport (SEC-330).
Cpanel Cpanel
3.8
CVSSv3
CVE-2017-18398
DnsUtils in cPanel prior to 68.0.15 allows zone creation for hostname and account subdomains (SEC-331).
Cpanel Cpanel
3.7
CVSSv3
CVE-2017-18399
cPanel prior to 68.0.15 allows malicious users to read root's crontab file during a short time interval upon enabling or disabling sqloptimizer (SEC-332).
Cpanel Cpanel
7.8
CVSSv3
CVE-2017-18400
cPanel prior to 68.0.15 allows local root code execution via cpdavd (SEC-333).
Cpanel Cpanel
2.7
CVSSv3
CVE-2017-18401
cPanel prior to 68.0.15 allows user accounts to be partially created with invalid username formats (SEC-334).
Cpanel Cpanel
5.4
CVSSv3
CVE-2017-18402
cPanel prior to 68.0.15 allows stored XSS during a cpaddons moderated upgrade (SEC-336).
Cpanel Cpanel
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
bypass
open redirect
CVE-2024-4358
CVE-2024-24199
CVE-2024-5550
CVE-2024-5305
CVE-2024-30373
CVE-2024-1800
deserialization
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
3
4
5
6
7
8
9
10
NEXT »