Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
cpanel vulnerabilities and exploits
(subscribe to this query)
7.5
CVSSv3
CVE-2020-26106
cPanel prior to 88.0.3 has weak permissions (world readable) for the proxy subdomains log file (SEC-558).
Cpanel Cpanel
7.5
CVSSv3
CVE-2020-26107
cPanel prior to 88.0.3, upon an upgrade, establishes predictable PowerDNS API keys (SEC-561).
Cpanel Cpanel
9.8
CVSSv3
CVE-2020-26108
cPanel prior to 88.0.13 mishandles file-extension dispatching, leading to code execution (SEC-488).
Cpanel Cpanel
6.1
CVSSv3
CVE-2020-26110
cPanel prior to 88.0.13 allows self XSS via DNS Zone Manager DNSSEC interfaces (SEC-564).
Cpanel Cpanel
6.1
CVSSv3
CVE-2020-26111
cPanel prior to 90.0.10 allows self XSS via the WHM Edit DNS Zone interface (SEC-566).
Cpanel Cpanel
7.5
CVSSv3
CVE-2020-26112
The email quota cache in cPanel prior to 90.0.10 allows overwriting of files.
Cpanel Cpanel
6.1
CVSSv3
CVE-2020-26113
cPanel prior to 90.0.10 allows self XSS via WHM Manage API Tokens interfaces (SEC-569).
Cpanel Cpanel
9.8
CVSSv3
CVE-2020-26098
cPanel prior to 88.0.3 mishandles the Exim filter path, leading to remote code execution (SEC-485).
Cpanel Cpanel
7.5
CVSSv3
CVE-2020-26099
cPanel prior to 88.0.3 allows malicious users to bypass the SMTP greylisting protection mechanism (SEC-491).
Cpanel Cpanel
9.8
CVSSv3
CVE-2020-26100
chsh in cPanel prior to 88.0.3 allows a Jailshell escape (SEC-497).
Cpanel Cpanel
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
cross-site scripting
CVE-2024-5158
XML external entity
CVE-2024-4262
CVE-2024-2036
CVE-2024-4985
CVE-2024-21791
remote attackers
CVE-2023-43208
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
6
7
8
9
10
NEXT »