Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
cpanel vulnerabilities and exploits
(subscribe to this query)
2.7
CVSSv3
CVE-2017-18382
cPanel prior to 68.0.15 allows use of an unreserved e-mail address in DNS zone SOA records (SEC-306).
Cpanel Cpanel
3.8
CVSSv3
CVE-2017-18384
cPanel prior to 68.0.15 allows jailed accounts to restore files that are outside of the jail (SEC-310).
Cpanel Cpanel
5.5
CVSSv3
CVE-2017-18385
cPanel prior to 68.0.15 allows unprivileged users to access restricted directories during account restores (SEC-311).
Cpanel Cpanel
7.2
CVSSv3
CVE-2017-18387
cPanel prior to 68.0.15 allows arbitrary code execution via Maketext injection in a Reseller style upload (SEC-314).
Cpanel Cpanel
6.3
CVSSv3
CVE-2017-18389
cPanel prior to 68.0.15 allows string format injection in dovecot-xaps-plugin (SEC-318).
Cpanel Cpanel
7.8
CVSSv3
CVE-2017-18390
cPanel prior to 68.0.15 allows code execution in the context of the root account because of weak permissions on incremental backups (SEC-322).
Cpanel Cpanel
2
CVSSv3
CVE-2017-18392
cPanel prior to 68.0.15 allows collisions because PostgreSQL databases can be assigned to multiple accounts (SEC-325).
Cpanel Cpanel
2.7
CVSSv3
CVE-2017-18394
cPanel prior to 68.0.15 does not have a sufficient list of reserved usernames (SEC-327).
Cpanel Cpanel
5.5
CVSSv3
CVE-2017-18396
cPanel prior to 68.0.15 allows arbitrary file-read operations via Exim vdomainaliases (SEC-329).
Cpanel Cpanel
3.8
CVSSv3
CVE-2017-18398
DnsUtils in cPanel prior to 68.0.15 allows zone creation for hostname and account subdomains (SEC-331).
Cpanel Cpanel
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-4040
privilege escalation
CVE-2024-4112
CVE-2024-32872
man-in-the-middle
CVE-2024-32788
bypass
CVE-2024-3400
CVE-2024-28976
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
9
10
NEXT »