Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
cpanel vulnerabilities and exploits
(subscribe to this query)
5.3
CVSSv3
CVE-2019-14397
cPanel prior to 80.0.5 allows demo accounts to modify arbitrary files via the extractfile API1 call (SEC-496).
Cpanel Cpanel
8.8
CVSSv3
CVE-2019-14398
cPanel prior to 80.0.5 allows demo accounts to execute arbitrary code via ajax_maketext_syntax_util.pl (SEC-498).
Cpanel Cpanel
7.1
CVSSv3
CVE-2019-14399
The SSL certificate-storage feature in cPanel prior to 78.0.18 allows unsafe file operations in the context of the root account (SEC-477).
Cpanel Cpanel
7.8
CVSSv3
CVE-2019-14400
cPanel prior to 78.0.18 allows local users to escalate to root access because of userdata cache misparsing (SEC-479).
Cpanel Cpanel
3.3
CVSSv3
CVE-2019-14402
cPanel prior to 78.0.18 unsafely determines terminal capabilities by using infocmp (SEC-481).
Cpanel Cpanel
4.3
CVSSv3
CVE-2019-14403
cPanel prior to 78.0.18 offers an open mail relay because of incorrect domain-redirect routing (SEC-483).
Cpanel Cpanel
5.5
CVSSv3
CVE-2019-14404
cPanel prior to 78.0.18 allows certain file-read operations in the context of the root account via the Exim virtual_user_spam router (SEC-484).
Cpanel Cpanel
8.8
CVSSv3
CVE-2019-14405
cPanel prior to 78.0.18 allows demo accounts to execute code via securitypolicy.cg (SEC-487).
Cpanel Cpanel
6.1
CVSSv3
CVE-2019-14406
cPanel prior to 78.0.18 has stored XSS in the BoxTrapper Queue Listing (SEC-493).
Cpanel Cpanel
4.3
CVSSv3
CVE-2019-14408
cPanel prior to 78.0.2 allows a demo account to link with an OpenID provider (SEC-460).
Cpanel Cpanel
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-26925
CVE-2023-41826
LFI
CVE-2022-22364
CVE-2024-2887
command injection
remote code execution
CVE-2024-34446
CVE-2022-48699
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
9
NEXT »