Cpanel

CVE VENDORS PRODUCTS UPDATED PUBLISHED CVSS
CVE-2016-10769 1Cpanel 1Cpanel Nov 21, 2024 Aug 5, 2019 N/A· v4 6.1 MEDIUM· v3 5.8 MEDIUM· v2 cPanel before 60.0.25 allows an open redirect via /cgi-sys/FormMail-clone.cgi (SEC-162).
CVE-2016-10768 1Cpanel 1Cpanel Nov 21, 2024 Aug 5, 2019 N/A· v4 6.5 MEDIUM· v3 5.5 MEDIUM· v2 cPanel before 60.0.25 allows file-overwrite operations during preparation for MySQL upgrades (SEC-161).
CVE-2016-10767 1Cpanel 1Cpanel Nov 21, 2024 Aug 5, 2019 N/A· v4 5.4 MEDIUM· v3 3.5 LOW· v2 cPanel before 60.0.25 allows stored XSS in the WHM Repair Mailbox Permissions interface (SEC-159).
CVE-2017-18468 1Cpanel 1Cpanel Nov 21, 2024 Aug 5, 2019 N/A· v4 6.3 MEDIUM· v3 6.5 MEDIUM· v2 cPanel before 62.0.17 allows demo accounts to execute code via the Htaccess::setphppreference API (SEC-232).
CVE-2017-18467 1Cpanel 1Cpanel Nov 21, 2024 Aug 5, 2019 N/A· v4 4.3 MEDIUM· v3 4.0 MEDIUM· v2 cPanel before 62.0.17 allows access to restricted resources because of a URL filtering error (SEC-229).
CVE-2017-18466 1Cpanel 1Cpanel Nov 21, 2024 Aug 5, 2019 N/A· v4 2.7 LOW· v3 4.0 MEDIUM· v2 cPanel before 62.0.17 does not properly recognize domain ownership during addition of parked domains to a mail configuration (SEC-228).
CVE-2017-18465 1Cpanel 1Cpanel Nov 21, 2024 Aug 5, 2019 N/A· v4 4.4 MEDIUM· v3 2.1 LOW· v2 cPanel before 62.0.17 does not have a sufficient list of reserved usernames (SEC-227).
CVE-2017-18464 1Cpanel 1Cpanel Nov 21, 2024 Aug 5, 2019 N/A· v4 4.9 MEDIUM· v3 5.5 MEDIUM· v2 cPanel before 62.0.17 allows arbitrary file-overwrite operations via the WHM Zone Template editor (SEC-226).
CVE-2017-18462 1Cpanel 1Cpanel Nov 21, 2024 Aug 5, 2019 N/A· v4 7.5 HIGH· v3 5.0 MEDIUM· v2 cPanel before 62.0.17 allows a CPHulk one-day ban bypass when IP based protection is enabled (SEC-224).
CVE-2017-18463 1Cpanel 1Cpanel Nov 21, 2024 Aug 2, 2019 N/A· v4 7.8 HIGH· v3 7.2 HIGH· v2 cPanel before 62.0.17 allows code execution in the context of the root account via a long DocumentRoot path (SEC-225).
CVE-2017-18461 1Cpanel 1Cpanel Nov 21, 2024 Aug 2, 2019 N/A· v4 4.3 MEDIUM· v3 5.0 MEDIUM· v2 cPanel before 62.0.17 allows does not preserve security policy questions across an account rename (SEC-223).
CVE-2017-18460 1Cpanel 1Cpanel Nov 21, 2024 Aug 2, 2019 N/A· v4 7.8 HIGH· v3 7.2 HIGH· v2 cPanel before 62.0.17 allows arbitrary code execution during automatic SSL installation (SEC-221).
CVE-2017-18459 1Cpanel 1Cpanel Nov 21, 2024 Aug 2, 2019 N/A· v4 7.8 HIGH· v3 7.2 HIGH· v2 cPanel before 62.0.17 allows arbitrary code execution during account modification (SEC-220).
CVE-2017-18458 1Cpanel 1Cpanel Nov 21, 2024 Aug 2, 2019 N/A· v4 3.3 LOW· v3 3.6 LOW· v2 cPanel before 62.0.17 allows file overwrite when renaming an account (SEC-219).
CVE-2017-18457 1Cpanel 1Cpanel Nov 21, 2024 Aug 2, 2019 N/A· v4 4.4 MEDIUM· v3 4.9 MEDIUM· v2 cPanel before 62.0.17 allows arbitrary file-read operations via WHM /styled/ URLs (SEC-218).
CVE-2017-18456 1Cpanel 1Cpanel Nov 21, 2024 Aug 2, 2019 N/A· v4 6.1 MEDIUM· v3 4.3 MEDIUM· v2 cPanel before 62.0.17 allows self XSS in the WHM cPAddons showsecurity interface (SEC-217).
CVE-2017-18455 1Cpanel 1Cpanel Nov 21, 2024 Aug 2, 2019 N/A· v4 2.7 LOW· v3 4.0 MEDIUM· v2 In cPanel before 62.0.17, addon domain conversion did not require a package for resellers (SEC-208).
CVE-2017-18454 1Cpanel 1Cpanel Nov 21, 2024 Aug 2, 2019 N/A· v4 5.4 MEDIUM· v3 3.5 LOW· v2 cPanel before 62.0.24 allows stored XSS in the WHM cPAddons install interface (SEC-262).
CVE-2017-18453 1Cpanel 1Cpanel Nov 21, 2024 Aug 2, 2019 N/A· v4 4.9 MEDIUM· v3 4.0 MEDIUM· v2 cPanel before 64.0.21 does not preserve supplemental groups across account renames (SEC-260).
CVE-2017-18452 1Cpanel 1Cpanel Nov 21, 2024 Aug 2, 2019 N/A· v4 6.7 MEDIUM· v3 4.6 MEDIUM· v2 cPanel before 64.0.21 allows code execution via Rails configuration files (SEC-259).

Previous 1...678...22 Next