Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
cpanel cpanel vulnerabilities and exploits
(subscribe to this query)
6.3
CVSSv3
CVE-2017-18403
cPanel prior to 68.0.15 allows code execution in the context of the nobody account via Mailman archives (SEC-337).
Cpanel Cpanel
3.1
CVSSv3
CVE-2017-18404
cPanel prior to 68.0.15 allows domain data to be deleted for domains with the .lock TLD (SEC-341).
Cpanel Cpanel
5.5
CVSSv3
CVE-2017-18405
cPanel prior to 68.0.15 allows arbitrary file-read operations because of the backup .htaccess modification logic (SEC-345).
Cpanel Cpanel
7.5
CVSSv3
CVE-2017-18406
cPanel prior to 67.9999.103 allows SQL injection during eximstats processing (SEC-276).
Cpanel Cpanel
4.8
CVSSv3
CVE-2017-18407
cPanel prior to 67.9999.103 does not enforce SSL hostname verification for the support-agreement download (SEC-279).
Cpanel Cpanel
5.4
CVSSv3
CVE-2017-18408
cPanel prior to 67.9999.103 allows stored XSS in WHM MySQL Password Change interfaces (SEC-282).
Cpanel Cpanel
6.5
CVSSv3
CVE-2017-18409
In cPanel prior to 67.9999.103, the backup interface could return a backup archive with all MySQL databases (SEC-283).
Cpanel Cpanel
7.5
CVSSv3
CVE-2015-9291
cPanel prior to 11.52.0.13 does not prevent arbitrary file-read operations via get_information_for_applications (CPANEL-1221).
Cpanel Cpanel
6.1
CVSSv3
CVE-2018-16236
cPanel through 74 allows XSS via a crafted filename in the logs subdirectory of a user account, because the filename is mishandled during frontend/THEME/raw/index.html rendering.
Cpanel Cpanel
NA
CVE-2008-6927
Multiple cross-site scripting (XSS) vulnerabilities in autoinstall4imagesgalleryupgrade.php in the Fantastico De Luxe Module for cPanel allow remote malicious users to inject arbitrary web script or HTML via the (1) localapp, (2) updatedir, (3) scriptpath_show, (4) domain_show, (...
Cpanel Cpanel
1 EDB exploit
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
camera
bypass
CVE-2024-3592
CVE-2024-37383
CVE-2024-24919
CVE-2024-27822
CVE-2024-36788
CVE-2024-36789
man-in-the-middle
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
4
5
6
7
8
9
10
NEXT »