Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
cpanel vulnerabilities and exploits
(subscribe to this query)
6.1
CVSSv3
CVE-2018-20865
cPanel prior to 76.0.8 has Self XSS in the WHM Additional Backup Destination field (SEC-459).
Cpanel Cpanel
6.1
CVSSv3
CVE-2018-20866
cPanel prior to 76.0.8 has Stored XSS in the WHM "Reset a DNS Zone" feature (SEC-461).
Cpanel Cpanel
6.1
CVSSv3
CVE-2018-20868
cPanel prior to 76.0.8 has Stored XSS in the WHM MultiPHP Manager interface (SEC-464).
Cpanel Cpanel
7.8
CVSSv3
CVE-2018-20869
cPanel prior to 76.0.8 allows arbitrary code execution in the context of the root account via dnssec adminbin (SEC-465).
Cpanel Cpanel
5.5
CVSSv3
CVE-2018-20870
The WebDAV transport feature in cPanel prior to 76.0.8 enables debug logging (SEC-467).
Cpanel Cpanel
3.3
CVSSv3
CVE-2018-20873
cPanel prior to 74.0.8 allows local users to disable the ClamAV daemon (SEC-409).
Cpanel Cpanel
5.4
CVSSv3
CVE-2018-20875
cPanel prior to 74.0.8 allows self XSS in the WHM Security Questions interface (SEC-433).
Cpanel Cpanel
5.4
CVSSv3
CVE-2018-20877
cPanel prior to 74.0.8 allows self XSS in WHM Style Upload interface (SEC-437).
Cpanel Cpanel
5.4
CVSSv3
CVE-2018-20878
cPanel prior to 74.0.8 allows stored XSS in WHM "File and Directory Restoration" interface (SEC-441).
Cpanel Cpanel
6.3
CVSSv3
CVE-2018-20879
cPanel prior to 74.0.8 allows demo accounts to execute arbitrary code via the Fileman::viewfile API (SEC-444).
Cpanel Cpanel
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-26925
CVE-2023-41826
LFI
CVE-2022-22364
CVE-2024-2887
command injection
remote code execution
CVE-2024-34446
CVE-2022-48699
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
5
6
7
8
9
10
NEXT »