Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
cpanel vulnerabilities and exploits
(subscribe to this query)
2.1
CVSSv2
CVE-2016-10796
cPanel prior to 58.0.4 initially uses weak permissions for Apache HTTP Server log files (SEC-130).
Cpanel Cpanel
4
CVSSv2
CVE-2016-10797
cPanel prior to 58.0.4 allows WHM "Purchase and Install an SSL Certificate" page visitors to list all server domains (SEC-133).
Cpanel Cpanel
2.1
CVSSv2
CVE-2016-10799
cPanel prior to 58.0.4 does not set the Pear tmp directory during a PHP installation (SEC-137).
Cpanel Cpanel
6.5
CVSSv2
CVE-2016-10801
cPanel prior to 58.0.4 has improper session handling for shared users (SEC-139).
Cpanel Cpanel
8.7
CVSSv2
CVE-2016-10804
The SQLite journal feature in cPanel prior to 57.9999.54 allows arbitrary file-overwrite operations during Horde Restore (SEC-58).
Cpanel Cpanel
10
CVSSv2
CVE-2016-10817
cPanel prior to 57.9999.54 allows SQL Injection via the ModSecurity TailWatch log file (SEC-123).
Cpanel Cpanel
4
CVSSv2
CVE-2016-10819
In cPanel prior to 57.9999.54, user log files become world-readable when rotated by cpanellogd (SEC-125).
Cpanel Cpanel
9
CVSSv2
CVE-2016-10820
cPanel prior to 55.9999.141 allows daemons to access their controlling TTYs (SEC-31).
Cpanel Cpanel
3.5
CVSSv2
CVE-2016-10822
cPanel prior to 55.9999.141 allows self XSS in X3 Reseller Branding Images (SEC-88).
Cpanel Cpanel
9.3
CVSSv2
CVE-2016-10824
cPanel prior to 55.9999.141 allows unauthenticated arbitrary code execution via DNS NS entry poisoning (SEC-90).
Cpanel Cpanel
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2022-48654
CVE-2024-2757
authentication bypass
CVE-2024-3194
CVE-2024-33640
CVE-2024-21111
dos
insecure direct object reference
CVE-2024-21345
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
2
3
4
5
6
7
8
9
10
NEXT »