Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
cpanel vulnerabilities and exploits
(subscribe to this query)
8.8
CVSSv3
CVE-2016-10808
In cPanel prior to 57.9999.54, /scripts/addpop and /scripts/delpop exposed TTYs (SEC-113).
Cpanel Cpanel
8.8
CVSSv3
CVE-2016-10811
In cPanel prior to 57.9999.54, /scripts/unsuspendacct exposed TTYs (SEC-116).
Cpanel Cpanel
8.8
CVSSv3
CVE-2016-10814
cPanel prior to 57.9999.54 allows demo-mode escape via show_template.stor (SEC-119).
Cpanel Cpanel
6.5
CVSSv3
CVE-2016-10818
cPanel prior to 57.9999.54 incorrectly sets log-file permissions in dnsadmin-startup and spamd-startup (SEC-124).
Cpanel Cpanel
6.5
CVSSv3
CVE-2016-10821
In cPanel prior to 55.9999.141, Scripts/addpop reveals a command-line password in a process list (SEC-75).
Cpanel Cpanel
8.8
CVSSv3
CVE-2016-10823
cPanel prior to 55.9999.141 allows arbitrary code execution in the context of the root account because of MakeText interpolation (SEC-89).
Cpanel Cpanel
8.8
CVSSv3
CVE-2016-10826
cPanel prior to 55.9999.141 allows malicious users to bypass Two Factor Authentication via DNS clustering requests (SEC-93).
Cpanel Cpanel
6.5
CVSSv3
CVE-2016-10832
cPanel prior to 55.9999.141 allows FTP cPHulk bypass via account name munging (SEC-102).
Cpanel Cpanel
4.3
CVSSv3
CVE-2016-10835
cPanel prior to 55.9999.141 allows a POP/IMAP cPHulk bypass via account name munging (SEC-107).
Cpanel Cpanel
8.1
CVSSv3
CVE-2016-10839
cPanel prior to 11.54.0.4 allows SQL injection in bin/horde_update_usernames (SEC-71).
Cpanel Cpanel
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-27322
administrator privileges
CVE-2024-1579
hardcoded
CVE-2023-20198
CVE-2024-33587
CVE-2024-33449
CVE-2024-4308
HTML injection
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
9
10
NEXT »