Filters

Cpanel CpanelcPanel before 70.0.23 does not prevent e-mail account suspensions from being applied to unowned acco…

medium
6.5
First published (updated )
CVE-2018-20934

Cpanel CpanelXSS

medium
5.4
First published (updated )
CVE-2018-20933

Cpanel CpanelcPanel before 70.0.23 exposes Apache HTTP Server logs after creation of certain domains (SEC-406).

medium
4
First published (updated )
CVE-2018-20932

Cpanel CpanelCode Injection

medium
6.5
First published (updated )
CVE-2018-20931

Cpanel CpanelcPanel before 70.0.23 allows .htaccess restrictions bypass when Htaccess Optimization is enabled (SE…

medium
6.5
First published (updated )
CVE-2018-20930

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Read MoreStart Free Trial

Cpanel CpanelXSS

medium
6.1
First published (updated )
CVE-2018-20928

Cpanel CpanelcPanel before 70.0.23 allows an open redirect via the /unprotected/redirect.html endpoint (SEC-392).

medium
6.1
First published (updated )
CVE-2018-20929

Cpanel CpanelMalicious File Upload

medium
6.7
First published (updated )
CVE-2018-20925

Cpanel CpanelcPanel before 71.9980.37 allows arbitrary file-read operations during pkgacct custom template handli…

medium
5.5
First published (updated )
CVE-2018-20908

Cpanel CpanelcPanel before 71.9980.37 does not enforce the Mime::list_hotlinks API feature restriction (SEC-432).

medium
4.3
First published (updated )
CVE-2018-20907

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Read MoreStart Free Trial

Cpanel CpanelcPanel before 71.9980.37 allows attackers to make API calls that bypass the images feature restricti…

medium
4.3
First published (updated )
CVE-2018-20906

Cpanel CpanelcPanel before 71.9980.37 allows attackers to make API calls that bypass the backup feature restricti…

medium
5.5
First published (updated )
CVE-2018-20905

Cpanel CpanelcPanel before 71.9980.37 allows attackers to make API calls that bypass the cron feature restriction…

medium
4.3
First published (updated )
CVE-2018-20904

Cpanel CpanelXSS

medium
6.1
First published (updated )
CVE-2018-20899

Cpanel CpanelcPanel before 71.9980.37 allows e-mail injection during cPAddons moderation (SEC-396).

medium
4.3
First published (updated )
CVE-2018-20898

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Read MoreStart Free Trial

Cpanel CpanelcPanel before 74.0.0 allows arbitrary zone file modifications because of incorrect CAA record handli…

medium
4.3
First published (updated )
CVE-2018-20892

Cpanel CpanelInput Validation

medium
5.5
First published (updated )
CVE-2018-20891

Cpanel CpanelcPanel before 74.0.0 allows arbitrary zone file modifications during record edits (SEC-426).

medium
4.3
First published (updated )
CVE-2018-20890

Cpanel CpanelInfoleak

medium
4.4
First published (updated )
CVE-2018-20889

Cpanel CpanelcPanel before 74.0.0 allows file modification in the context of the root account because of incorrec…

medium
5.5
First published (updated )
CVE-2018-20888

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Read MoreStart Free Trial

Cpanel CpanelcPanel before 74.0.0 insecurely stores phpMyAdmin session files (SEC-418).

medium
5.3
First published (updated )
CVE-2018-20886

Cpanel CpanelInput Validation

medium
6.8
First published (updated )
CVE-2018-20882

Cpanel CpanelXSS

medium
5.4
First published (updated )
CVE-2018-20874

Company

Resources

Contact

SecAlerts Pty Ltd.
132 Wickham Terrace
Fortitude Valley,
QLD 4006, Australia
info@secalerts.co
By using SecAlerts services, you agree to our services end-user license agreement. This website is safeguarded by reCAPTCHA and governed by the Google Privacy Policy and Terms of Service. All names, logos, and brands of products are owned by their respective owners, and any usage of these names, logos, and brands for identification purposes only does not imply endorsement. If you possess any content that requires removal, please get in touch with us.
© 2024 SecAlerts Pty Ltd.
ABN: 70 645 966 203, ACN: 645 966 203