Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
cpanel vulnerabilities and exploits
(subscribe to this query)
4.4
CVSSv3
CVE-2017-18465
cPanel prior to 62.0.17 does not have a sufficient list of reserved usernames (SEC-227).
Cpanel Cpanel
6.3
CVSSv3
CVE-2017-18468
cPanel prior to 62.0.17 allows demo accounts to execute code via the Htaccess::setphppreference API (SEC-232).
Cpanel Cpanel
6.1
CVSSv3
CVE-2017-18472
cPanel prior to 62.0.4 allows reflected XSS in reset-password interfaces (SEC-198).
Cpanel Cpanel
7.5
CVSSv3
CVE-2017-18476
Leech Protect in cPanel prior to 62.0.4 does not protect certain directories (SEC-205).
Cpanel Cpanel
6.5
CVSSv3
CVE-2017-18478
In cPanel prior to 62.0.4 incorrect ACL checks could occur in xml-api for Rearrange Account actions (SEC-207).
Cpanel Cpanel
6.1
CVSSv3
CVE-2020-10114
cPanel prior to 84.0.20 allows stored self-XSS via the HTML file editor (SEC-535).
Cpanel Cpanel
5.3
CVSSv3
CVE-2020-10116
cPanel prior to 84.0.20 allows malicious users to bypass intended restrictions on features and demo accounts via WebDisk UAPI calls (SEC-541).
Cpanel Cpanel
9.8
CVSSv3
CVE-2020-10119
cPanel prior to 84.0.20 allows a demo account to achieve remote code execution via a cpsrvd rsync shell (SEC-544).
Cpanel Cpanel
7.2
CVSSv3
CVE-2020-10120
cPanel prior to 84.0.20 allows resellers to achieve remote code execution as root via a cpsrvd rsync shell (SEC-545).
Cpanel Cpanel
2.7
CVSSv3
CVE-2017-18394
cPanel prior to 68.0.15 does not have a sufficient list of reserved usernames (SEC-327).
Cpanel Cpanel
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2020-4463
CVE-2024-29895
inject
CVE-2023-52689
CVE-2024-5049
CVE-2024-5051
privilege escalation
physical
CVE-2023-52676
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
3
4
5
6
7
8
9
10
NEXT »