Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
cpanel vulnerabilities and exploits
(subscribe to this query)
3.5
CVSSv2
CVE-2016-10784
cPanel prior to 60.0.25 allows self XSS in the alias upload interface (SEC-184).
Cpanel Cpanel
9
CVSSv2
CVE-2016-10788
cPanel prior to 60.0.25 allows arbitrary code execution via Maketext in PostgreSQL adminbin (SEC-188).
Cpanel Cpanel
5
CVSSv2
CVE-2016-10791
cPanel prior to 60.0.15 does not ensure that system accounts lack a valid password, so that logins are impossible (CPANEL-9559).
Cpanel Cpanel
6.5
CVSSv2
CVE-2016-10793
cPanel prior to 59.9999.145 allows arbitrary code execution due to an incorrect #! in Mail::SPF scripts (SEC-152).
Cpanel Cpanel
4.3
CVSSv2
CVE-2016-10795
cPanel prior to 59.9999.145 allows stored XSS in the WHM tail_upcp2.cgi interface (SEC-156).
Cpanel Cpanel
4
CVSSv2
CVE-2016-10797
cPanel prior to 58.0.4 allows WHM "Purchase and Install an SSL Certificate" page visitors to list all server domains (SEC-133).
Cpanel Cpanel
4.9
CVSSv2
CVE-2016-10798
cPanel prior to 58.0.4 allows a file-ownership change (to nobody) via rearrangeacct (SEC-134).
Cpanel Cpanel
6.8
CVSSv2
CVE-2016-10800
cPanel prior to 58.0.4 allows demo-mode escape via Site Templates and Boxtrapper API calls (SEC-138).
Cpanel Cpanel
6.5
CVSSv2
CVE-2016-10802
cPanel prior to 58.0.4 allows code execution in the context of other user accounts through the PHP CGI handler (SEC-142).
Cpanel Cpanel
5
CVSSv2
CVE-2016-10803
cPanel prior to 57.9999.105 allows newline injection via LOC records (CPANEL-6923).
Cpanel Cpanel
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-2907
hardcoded
inject
CVE-2024-20359
CVE-2024-2467
CVE-2024-4077
CVE-2024-22391
camera
CVE-2024-20353
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
9
NEXT »