Filter
AND
AND

Cpanel CpanelInput Validation

First published (updated )

Cpanel CpanelXSS

First published (updated )

Cpanel CpanelInfoleak

First published (updated )

Cpanel CpanelIn cPanel before 62.0.4, WHM SSL certificate generation uses an unreserved e-mail address (SEC-209).

First published (updated )

Cpanel CpanelLeech Protect in cPanel before 62.0.4 does not protect certain directories (SEC-205).

7.5
First published (updated )

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Cpanel CpanelXSS

First published (updated )

Cpanel CpanelXSS

First published (updated )

Cpanel CpanelInfoleak

First published (updated )

Cpanel CpanelcPanel before 62.0.4 has a fixed password for the Munin MySQL test account (SEC-196).

8.8
First published (updated )

Cpanel CpanelcPanel before 62.0.4 does not enforce account ownership for has_mycnf_for_cpuser WHM API calls (SEC-…

First published (updated )

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Cpanel CpanelIn cPanel before 62.0.4, Exim transports could execute in the context of the nobody account (SEC-206…

First published (updated )

Cpanel CpanelInput Validation

8.8
First published (updated )

Cpanel CpanelOpen redirect vulnerability in cgiemail and cgiecho allows remote attackers to redirect users to arb…

First published (updated )

Cpanel CpanelInput Validation

8.8
First published (updated )

Cpanel CpanelInfoleak

First published (updated )

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Cpanel CpanelcPanel before 59.9999.145 allows code execution in the context of other accounts via mailman list ar…

8.8
First published (updated )

Cpanel CpanelcPanel before 58.0.4 initially uses weak permissions for Apache HTTP Server log files (SEC-130).

3.3
First published (updated )

Cpanel CpanelcPanel before 58.0.4 does not set the Pear tmp directory during a PHP installation (SEC-137).

First published (updated )

Cpanel CpanelSQL Injection

8.1
First published (updated )

Cpanel CpanelCVE-2016-10838

First published (updated )

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Cpanel CpanelcPanel before 55.9999.141 allows arbitrary file-read operations during authentication with caldav (S…

First published (updated )

Cpanel CpanelInput Validation

8.8
First published (updated )

Cpanel CpanelXSS

First published (updated )

Cpanel CpanelInfoleak

7.5
First published (updated )

Cpanel CpanelInput Validation

First published (updated )

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Cpanel CpanelInput Validation

First published (updated )

Cpanel CpanelcPanel before 11.54.0.4 allows arbitrary code execution during locale duplication (SEC-72).

First published (updated )

Cpanel CpanelInput Validation

First published (updated )

Cpanel CpanelcPanel before 55.9999.141 allows FTP cPHulk bypass via account name munging (SEC-102).

First published (updated )

Cpanel CpanelcPanel before 55.9999.141 mishandles username-based blocking for PRE requests in cPHulkd (SEC-104).

7.5
First published (updated )

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Contact

SecAlerts Pty Ltd.
132 Wickham Terrace
Fortitude Valley,
QLD 4006, Australia
info@secalerts.co
By using SecAlerts services, you agree to our services end-user license agreement. This website is safeguarded by reCAPTCHA and governed by the Google Privacy Policy and Terms of Service. All names, logos, and brands of products are owned by their respective owners, and any usage of these names, logos, and brands for identification purposes only does not imply endorsement. If you possess any content that requires removal, please get in touch with us.
© 2024 SecAlerts Pty Ltd.
ABN: 70 645 966 203, ACN: 645 966 203