Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
cpanel vulnerabilities and exploits
(subscribe to this query)
5.4
CVSSv3
CVE-2018-20933
cPanel prior to 70.0.23 has Stored XSS via an WHM Edit DNS Zone action (SEC-410).
Cpanel Cpanel
5.4
CVSSv3
CVE-2018-20935
cPanel prior to 70.0.23 allows stored XSS in via a WHM "Reset a DNS Zone" action (SEC-412).
Cpanel Cpanel
2.7
CVSSv3
CVE-2018-20938
cPanel prior to 68.0.27 does not enforce ownership during addpkgext and delpkgext WHM API calls (SEC-324).
Cpanel Cpanel
3.3
CVSSv3
CVE-2018-20940
cPanel prior to 68.0.27 allows malicious users to read root's crontab file during a short time interval upon the enabling of backups (SEC-342).
Cpanel Cpanel
2.5
CVSSv3
CVE-2018-20942
cPanel prior to 68.0.27 allows malicious users to read root's crontab file during a short time interval upon configuring crontab (SEC-351).
Cpanel Cpanel
3.3
CVSSv3
CVE-2018-20944
cPanel prior to 68.0.27 allows malicious users to read a copy of httpd.conf that is created during a syntax test (SEC-353).
Cpanel Cpanel
5.7
CVSSv3
CVE-2018-20945
bin/csvprocess in cPanel prior to 68.0.27 allows insecure file operations (SEC-354).
Cpanel Cpanel
6.1
CVSSv3
CVE-2018-20948
cPanel prior to 68.0.27 allows self XSS in cPanel Backup Restoration (SEC-383).
Cpanel Cpanel
6.1
CVSSv3
CVE-2018-20950
cPanel prior to 68.0.27 allows self stored XSS in WHM Account Transfer (SEC-386).
Cpanel Cpanel
6.5
CVSSv3
CVE-2018-20952
cPanel prior to 68.0.27 creates world-readable files during use of WHM Apache Includes Editor (SEC-388).
Cpanel Cpanel
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-3080
log injection
CVE-2024-6041
CVE-2024-37661
XML external entity
CVE-2024-0845
privilege escalation
CVE-2023-37057
CVE-2024-27801
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
3
4
5
6
7
8
9
10
NEXT »