Filter
AND

Cpanel CpanelXEE

7.2
First published (updated )

Cpanel CpanelThe WHM Locale Upload feature in cPanel before 98.0.1 allows unserialization attacks (SEC-585).

7.2
First published (updated )

Cpanel CpanelRace Condition

7.5
First published (updated )

Cpanel CpanelIn cPanel before 96.0.13, fix_cpanel_perl lacks verification of the integrity of downloads (SEC-587)…

8.1
First published (updated )

Cpanel CpanelIn cPanel before 96.0.13, scripts/fix-cpanel-perl does not properly restrict the overwriting of file…

8.1
First published (updated )

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Cpanel CpanelcPanel before 92.0.9 allows a Reseller to bypass the suspension lock (SEC-578).

7.5
First published (updated )

Cpanel CpanelcPanel before 92.0.9 allows a MySQL user (who has an old-style password hash) to bypass suspension (…

7.5
First published (updated )

Cpanel CpanelcPanel before 88.0.3 allows attackers to bypass the SMTP greylisting protection mechanism (SEC-491).

7.5
First published (updated )

Cpanel CpanelIn cPanel before 88.0.3, an insecure auth policy API key is used by Dovecot on a templated VM (SEC-5…

7.5
First published (updated )

Cpanel CpanelIn cPanel before 88.0.3, an insecure site password is used for Mailman on a templated VM (SEC-551).

7.5
First published (updated )

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Cpanel CpanelIn cPanel before 88.0.3, an insecure SRS secret is used on a templated VM (SEC-552).

7.5
First published (updated )

Cpanel CpanelcPanel before 88.0.3 has weak permissions (world readable) for the proxy subdomains log file (SEC-55…

7.5
First published (updated )

Cpanel CpanelcPanel before 88.0.3, upon an upgrade, establishes predictable PowerDNS API keys (SEC-561).

7.5
First published (updated )

Cpanel CpanelcPanel before 88.0.13 allows bypass of a protection mechanism that attempted to restrict package mod…

7.5
First published (updated )

Cpanel CpanelThe email quota cache in cPanel before 90.0.10 allows overwriting of files.

7.5
First published (updated )

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Cpanel CpanelcPanel before 86.0.14 allows attackers to obtain access to the current working directory via the acc…

8.1
First published (updated )

Cpanel CpanelcPanel before 82.0.18 allows authentication bypass because of misparsing of the format of the passwo…

8.8
First published (updated )

Cpanel CpanelcPanel before 82.0.18 allows authentication bypass because webmail usernames are processed inconsist…

8.8
First published (updated )

Cpanel CpanelcPanel before 82.0.15 allows API token credentials to persist after an account has been renamed or t…

8.8
First published (updated )

Cpanel CpanelcPanel before 58.0.4 allows code execution in the context of other user accounts through the PHP CGI…

8.8
First published (updated )

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Cpanel CpanelcPanel before 58.0.4 has improper session handling for shared users (SEC-139).

8.8
First published (updated )

Cpanel CpanelCRLF Injection

7.5
First published (updated )

Cpanel CpanelInput Validation, SQL Injection

8.7
First published (updated )

Cpanel CpanelInput Validation

8.8
First published (updated )

Cpanel CpanelInput Validation

8.8
First published (updated )

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Cpanel CpanelcPanel before 59.9999.145 allows code execution in the context of other accounts via mailman list ar…

8.8
First published (updated )

Cpanel CpanelInput Validation

8.8
First published (updated )

Cpanel CpanelInfoleak

7.5
First published (updated )

Cpanel CpanelCVE-2016-10787

First published (updated )

Cpanel CpanelcPanel before 60.0.25 allows format-string injection in exception-message handling (SEC-171).

8.8
First published (updated )

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Contact

SecAlerts Pty Ltd.
132 Wickham Terrace
Fortitude Valley,
QLD 4006, Australia
info@secalerts.co
By using SecAlerts services, you agree to our services end-user license agreement. This website is safeguarded by reCAPTCHA and governed by the Google Privacy Policy and Terms of Service. All names, logos, and brands of products are owned by their respective owners, and any usage of these names, logos, and brands for identification purposes only does not imply endorsement. If you possess any content that requires removal, please get in touch with us.
© 2024 SecAlerts Pty Ltd.
ABN: 70 645 966 203, ACN: 645 966 203