cPanel prior to 82.0.18 allows authentication bypass because of misparsing of the format of the password file (SEC-516).
cpanel cpanel