cPanel prior to 70.0.23 allows jailshell escape because of incorrect crontab parsing (SEC-382).
cpanel cpanel