Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
cpanel vulnerabilities and exploits
(subscribe to this query)
6.4
CVSSv2
CVE-2018-20864
cPanel prior to 76.0.8 allows a persistent Virtual FTP accounts after removal of its associated domain (SEC-454).
Cpanel Cpanel
4.3
CVSSv2
CVE-2018-20868
cPanel prior to 76.0.8 has Stored XSS in the WHM MultiPHP Manager interface (SEC-464).
Cpanel Cpanel
2.1
CVSSv2
CVE-2018-20870
The WebDAV transport feature in cPanel prior to 76.0.8 enables debug logging (SEC-467).
Cpanel Cpanel
2.1
CVSSv2
CVE-2018-20873
cPanel prior to 74.0.8 allows local users to disable the ClamAV daemon (SEC-409).
Cpanel Cpanel
3.5
CVSSv2
CVE-2018-20874
cPanel prior to 74.0.8 allows self XSS in the WHM "Create a New Account" interface (SEC-428).
Cpanel Cpanel
3.5
CVSSv2
CVE-2018-20878
cPanel prior to 74.0.8 allows stored XSS in WHM "File and Directory Restoration" interface (SEC-441).
Cpanel Cpanel
2.1
CVSSv2
CVE-2018-20880
cPanel prior to 74.0.8 mishandles account suspension because of an invalid email_accounts.json file (SEC-445).
Cpanel Cpanel
3.5
CVSSv2
CVE-2018-20881
cPanel prior to 74.0.8 allows self stored XSS on the Security Questions login page (SEC-446).
Cpanel Cpanel
6.6
CVSSv2
CVE-2018-20882
cPanel prior to 74.0.8 allows arbitrary file-write operations in the context of the root account during WHM Force Password Change (SEC-447).
Cpanel Cpanel
4
CVSSv2
CVE-2018-20883
cPanel prior to 74.0.8 allows FTP access during account suspension (SEC-449).
Cpanel Cpanel
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-22120
CVE-2024-35921
CVE-2024-35874
brute force
CVE-2024-36080
unprivileged
CVE-2024-35917
IDOR
CVE-2024-4947
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
6
7
8
9
10
NEXT »