Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
cpanel vulnerabilities and exploits
(subscribe to this query)
2.1
CVSSv2
CVE-2017-18449
cPanel prior to 64.0.21 allows certain file-rename operations in the context of the root account via scripts/convert_roundcube_mysql2sqlite (SEC-254).
Cpanel Cpanel
5
CVSSv2
CVE-2017-18451
cPanel prior to 64.0.21 allows malicious users to read a user's crontab file during a short time interval upon a cPAddon upgrade (SEC-257).
Cpanel Cpanel
4
CVSSv2
CVE-2017-18453
cPanel prior to 64.0.21 does not preserve supplemental groups across account renames (SEC-260).
Cpanel Cpanel
4
CVSSv2
CVE-2017-18455
In cPanel prior to 62.0.17, addon domain conversion did not require a package for resellers (SEC-208).
Cpanel Cpanel
3.6
CVSSv2
CVE-2017-18458
cPanel prior to 62.0.17 allows file overwrite when renaming an account (SEC-219).
Cpanel Cpanel
5
CVSSv2
CVE-2017-18461
cPanel prior to 62.0.17 allows does not preserve security policy questions across an account rename (SEC-223).
Cpanel Cpanel
5.5
CVSSv2
CVE-2017-18464
cPanel prior to 62.0.17 allows arbitrary file-overwrite operations via the WHM Zone Template editor (SEC-226).
Cpanel Cpanel
4
CVSSv2
CVE-2017-18466
cPanel prior to 62.0.17 does not properly recognize domain ownership during addition of parked domains to a mail configuration (SEC-228).
Cpanel Cpanel
4
CVSSv2
CVE-2017-18467
cPanel prior to 62.0.17 allows access to restricted resources because of a URL filtering error (SEC-229).
Cpanel Cpanel
6.5
CVSSv2
CVE-2017-18469
cPanel prior to 62.0.17 allows demo accounts to execute code via an NVData_fetchinc API call (SEC-233).
Cpanel Cpanel
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
blind SQL injection
firmware
CVE-2006-4304
CVE-2024-32878
CVE-2024-31502
XSS
CVE-2024-3059
CVE-2024-33692
CVE-2024-3400
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
9
10
NEXT »