Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
cpanel vulnerabilities and exploits
(subscribe to this query)
3.3
CVSSv3
CVE-2019-20494
In cPanel prior to 82.0.18, Cpanel::Rand::Get can produce a predictable series of numbers (SEC-525).
Cpanel Cpanel
6.5
CVSSv3
CVE-2019-20495
cPanel prior to 82.0.18 allows malicious users to read an arbitrary database via MySQL dump streaming (SEC-531).
Cpanel Cpanel
5.5
CVSSv3
CVE-2019-20496
cPanel prior to 82.0.18 allows malicious users to conduct arbitrary chown operations as root during log processing (SEC-532).
Cpanel Cpanel
NA
CVE-2007-3366
Cross-site scripting (XSS) vulnerability in Simple CGI Wrapper (scgiwrap) in cPanel prior to 10.9.1, and 11.x prior to 11.4.19-R14378, allows remote malicious users to inject arbitrary web script or HTML via the URI. NOTE: the provenance of this information is unknown; the detail...
Cpanel Cpanel
NA
CVE-2007-3367
Simple CGI Wrapper (scgiwrap) in cPanel prior to 10.9.1, and 11.x prior to 11.4.19-R14378, allows remote malicious users to obtain sensitive information via a direct request, which reveals the path in an error message. NOTE: the provenance of this information is unknown; the deta...
Cpanel Cpanel
3.3
CVSSv3
CVE-2018-20873
cPanel prior to 74.0.8 allows local users to disable the ClamAV daemon (SEC-409).
Cpanel Cpanel
5.4
CVSSv3
CVE-2018-20875
cPanel prior to 74.0.8 allows self XSS in the WHM Security Questions interface (SEC-433).
Cpanel Cpanel
5.4
CVSSv3
CVE-2018-20877
cPanel prior to 74.0.8 allows self XSS in WHM Style Upload interface (SEC-437).
Cpanel Cpanel
6.3
CVSSv3
CVE-2018-20879
cPanel prior to 74.0.8 allows demo accounts to execute arbitrary code via the Fileman::viewfile API (SEC-444).
Cpanel Cpanel
6.1
CVSSv3
CVE-2018-20903
cPanel prior to 71.9980.37 allows self XSS in the WHM Backup Configuration interface (SEC-421).
Cpanel Cpanel
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2023-49333
CVE-2024-33901
CVE-2024-36001
CVE-2024-2835
firewall
XPath injection
authentication bypass
CVE-2024-22120
CVE-2024-32002
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
5
6
7
8
9
10
NEXT »