Filter
AND
-Infinity
0

Trending

Last week
Last month
Last year

cPanelcPanel before 82.0.18 allows authentication bypass because webmail usernames are processed inconsist…

high
8.8
First published (updated )
CVE-2019-20490

cPanelcPanel before 55.9999.141 allows account-suspension bypass via ftp (SEC-105).

high
8.8
First published (updated )
CVE-2016-10834

cPanelInput Validation

high
8.8
First published (updated )
CVE-2016-10789

cPanelcPanel before 80.0.22 allows remote code execution by a demo account because of incorrect URI dispat…

high
8.8
First published (updated )
CVE-2019-14392

cPanelcPanel before 78.0.18 allows code execution via an addforward API1 call (SEC-480).

high
8.8
First published (updated )
CVE-2019-14401

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Read MoreStart Free Trial

cPanelcPanel before 82.0.18 allows authentication bypass because of misparsing of the format of the passwo…

high
8.8
First published (updated )
CVE-2019-20492

cPanelcPanel before 82.0.15 allows API token credentials to persist after an account has been renamed or t…

high
8.8
First published (updated )
CVE-2019-17375

cPanelcPanel before 60.0.25 allows format-string injection in exception-message handling (SEC-171).

high
8.8
First published (updated )
CVE-2016-10773

cPanelcPanel before 58.0.4 allows code execution in the context of other user accounts through the PHP CGI…

high
8.8
First published (updated )
CVE-2016-10802

cPanelInput Validation

high
8.8
First published (updated )
CVE-2016-10816

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Read MoreStart Free Trial

cPanelInput Validation

high
8.8
First published (updated )
CVE-2016-10793

cPanelInput Validation

high
8.8
First published (updated )
CVE-2016-10814

cPanelcPanel before 62.0.4 has a fixed password for the Munin MySQL test account (SEC-196).

high
8.8
First published (updated )
CVE-2017-18470

cPanelcPanel before 58.0.4 has improper session handling for shared users (SEC-139).

high
8.8
First published (updated )
CVE-2016-10801

cPanelcPanel before 59.9999.145 allows code execution in the context of other accounts via mailman list ar…

high
8.8
First published (updated )
CVE-2016-10792

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Read MoreStart Free Trial

cPanelInput Validation

high
8.8
First published (updated )
CVE-2017-18475

cPanelInput Validation

high
8.8
First published (updated )
CVE-2016-10805

cPanelcPanel before 55.9999.141 allows attackers to bypass Two Factor Authentication via DNS clustering re…

high
8.8
First published (updated )
CVE-2016-10826

cPanelcPanel before 78.0.18 allows demo accounts to execute code via securitypolicy.cg (SEC-487).

high
8.8
First published (updated )
CVE-2019-14405

cPanelcPanel before 80.0.5 allows demo accounts to execute arbitrary code via ajax_maketext_syntax_util.pl…

high
8.8
First published (updated )
CVE-2019-14398

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Read MoreStart Free Trial

cPanelInput Validation, SQL Injection

high
8.7
First published (updated )
CVE-2016-10804

cPanelCode Injection

high
8.5
First published (updated )
CVE-2008-2478

cPanelcPanel before 11.54.0.4 allows arbitrary file-chown and file-chmod operations during Roundcube datab…

high
8.5
First published (updated )
CVE-2016-10846

cPanelcPanel before 11.54.0.4 allows arbitrary code execution because of an unsafe @INC path (SEC-46).

high
8.5
First published (updated )
CVE-2016-10837

cPanelIn cPanel before 96.0.13, fix_cpanel_perl lacks verification of the integrity of downloads (SEC-587)…

high
8.1
First published (updated )
CVE-2021-38588

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Read MoreStart Free Trial

cPanelIn cPanel before 96.0.13, scripts/fix-cpanel-perl does not properly restrict the overwriting of file…

high
8.1
First published (updated )
CVE-2021-38589

cPanelInput Validation

high
8.1
First published (updated )
CVE-2016-10787

cPanelcPanel before 11.54.0.0 allows unauthorized password changes via Webmail API commands (SEC-65).

high
8.1
First published (updated )
CVE-2016-10859

cPanelcPanel before 86.0.14 allows attackers to obtain access to the current working directory via the acc…

high
8.1
First published (updated )
CVE-2020-12785

cPanelInput Validation

high
8.1
First published (updated )
CVE-2016-10771

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Read MoreStart Free Trial

Company

Resources

Contact

SecAlerts Pty Ltd.
132 Wickham Terrace
Fortitude Valley,
QLD 4006, Australia
info@secalerts.co
By using SecAlerts services, you agree to our services end-user license agreement. This website is safeguarded by reCAPTCHA and governed by the Google Privacy Policy and Terms of Service. All names, logos, and brands of products are owned by their respective owners, and any usage of these names, logos, and brands for identification purposes only does not imply endorsement. If you possess any content that requires removal, please get in touch with us.
© 2025 SecAlerts Pty Ltd.
ABN: 70 645 966 203, ACN: 645 966 203