Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
cpanel vulnerabilities and exploits
(subscribe to this query)
4
CVSSv2
CVE-2018-20904
cPanel prior to 71.9980.37 allows malicious users to make API calls that bypass the cron feature restriction (SEC-427).
Cpanel Cpanel
5.5
CVSSv2
CVE-2018-20905
cPanel prior to 71.9980.37 allows malicious users to make API calls that bypass the backup feature restriction (SEC-429).
Cpanel Cpanel
4
CVSSv2
CVE-2018-20906
cPanel prior to 71.9980.37 allows malicious users to make API calls that bypass the images feature restriction (SEC-430).
Cpanel Cpanel
2.1
CVSSv2
CVE-2018-20908
cPanel prior to 71.9980.37 allows arbitrary file-read operations during pkgacct custom template handling (SEC-435).
Cpanel Cpanel
6.5
CVSSv2
CVE-2018-20911
cPanel prior to 70.0.23 allows code execution because "." is in @INC during a Perl syntax check of cpaddonsup (SEC-359).
Cpanel Cpanel
3.5
CVSSv2
CVE-2018-20915
cPanel prior to 70.0.23 allows stored XSS via a WHM Edit DNS Zone action (SEC-369).
Cpanel Cpanel
4.3
CVSSv2
CVE-2018-20919
cPanel prior to 70.0.23 allows stored XSS via a WHM Create Account action (SEC-373).
Cpanel Cpanel
7.5
CVSSv2
CVE-2018-20924
cPanel prior to 70.0.23 allows arbitrary file-read and file-unlink operations via WHM style uploads (SEC-378).
Cpanel Cpanel
4.6
CVSSv2
CVE-2018-20925
cPanel prior to 70.0.23 allows local privilege escalation via the WHM Legacy Language File Upload interface (SEC-379).
Cpanel Cpanel
2.1
CVSSv2
CVE-2018-20927
cPanel prior to 70.0.23 allows jailshell escape because of incorrect crontab parsing (SEC-382).
Cpanel Cpanel
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-27322
cross-site request forgery
unauthorized
CVE-2024-33925
reflected XSS
CVE-2023-51580
CVE-2023-51579
CVE-2015-2051
CVE-2023-51609
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
2
3
4
5
6
7
8
9
10
NEXT »