Filter
AND

Cpanel CpanelXSS

First published (updated )

Cpanel CpanelXEE

7.2
First published (updated )

Cpanel CpanelThe WHM Locale Upload feature in cPanel before 98.0.1 allows unserialization attacks (SEC-585).

7.2
First published (updated )

Cpanel CpanelIn cPanel before 98.0.1, /scripts/cpan_config performs unsafe operations on files (SEC-589).

First published (updated )

Cpanel CpanelRace Condition

7.5
First published (updated )

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Cpanel CpanelIn cPanel before 96.0.13, fix_cpanel_perl lacks verification of the integrity of downloads (SEC-587)…

8.1
First published (updated )

Cpanel CpanelIn cPanel before 96.0.13, scripts/fix-cpanel-perl does not properly restrict the overwriting of file…

8.1
First published (updated )

Cpanel CpanelIn cPanel before 96.0.8, weak permissions on web stats can lead to information disclosure (SEC-584).

First published (updated )

Cpanel CpanelXSS

First published (updated )

Cpanel CpanelcPanel before 92.0.9 allows a Reseller to bypass the suspension lock (SEC-578).

7.5
First published (updated )

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Cpanel CpanelcPanel before 92.0.9 allows a MySQL user (who has an old-style password hash) to bypass suspension (…

7.5
First published (updated )

Cpanel CpanelIn cPanel before 90.0.17, 2FA can be bypassed via a brute-force approach (SEC-575).

First published (updated )

Cpanel CpanelXSS

First published (updated )

Cpanel CpanelcPanel before 90.0.17 has multiple instances of URL parameter injection (SEC-567).

First published (updated )

Cpanel CpanelcPanel before 88.0.3 mishandles the Exim filter path, leading to remote code execution (SEC-485).

First published (updated )

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Cpanel CpanelcPanel before 88.0.3 allows attackers to bypass the SMTP greylisting protection mechanism (SEC-491).

7.5
First published (updated )

Cpanel Cpanelchsh in cPanel before 88.0.3 allows a Jailshell escape (SEC-497).

First published (updated )

Cpanel CpanelIn cPanel before 88.0.3, insecure RNDC credentials are used for BIND on a templated VM (SEC-549).

First published (updated )

Cpanel CpanelIn cPanel before 88.0.3, an insecure auth policy API key is used by Dovecot on a templated VM (SEC-5…

7.5
First published (updated )

Cpanel CpanelIn cPanel before 88.0.3, an insecure site password is used for Mailman on a templated VM (SEC-551).

7.5
First published (updated )

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Cpanel CpanelIn cPanel before 88.0.3, an insecure SRS secret is used on a templated VM (SEC-552).

7.5
First published (updated )

Cpanel CpanelIn cPanel before 88.0.3, insecure chkservd test credentials are used on a templated VM (SEC-554).

First published (updated )

Cpanel CpanelcPanel before 88.0.3 has weak permissions (world readable) for the proxy subdomains log file (SEC-55…

7.5
First published (updated )

Cpanel CpanelcPanel before 88.0.3, upon an upgrade, establishes predictable PowerDNS API keys (SEC-561).

7.5
First published (updated )

Cpanel CpanelcPanel before 88.0.13 mishandles file-extension dispatching, leading to code execution (SEC-488).

First published (updated )

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Cpanel CpanelcPanel before 88.0.13 allows bypass of a protection mechanism that attempted to restrict package mod…

7.5
First published (updated )

Cpanel CpanelXSS

First published (updated )

Cpanel CpanelXSS

First published (updated )

Cpanel CpanelThe email quota cache in cPanel before 90.0.10 allows overwriting of files.

7.5
First published (updated )

Cpanel CpanelXSS

First published (updated )

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Contact

SecAlerts Pty Ltd.
132 Wickham Terrace
Fortitude Valley,
QLD 4006, Australia
info@secalerts.co
By using SecAlerts services, you agree to our services end-user license agreement. This website is safeguarded by reCAPTCHA and governed by the Google Privacy Policy and Terms of Service. All names, logos, and brands of products are owned by their respective owners, and any usage of these names, logos, and brands for identification purposes only does not imply endorsement. If you possess any content that requires removal, please get in touch with us.
© 2024 SecAlerts Pty Ltd.
ABN: 70 645 966 203, ACN: 645 966 203