Search Blog Stats Labs

Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits

About

About Exploit Intel About Exploit Forge Privacy Policy

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Color Theme

Search Blog Statistics Labs Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits About About Exploit Forge Privacy

Exploit Database Researchers CWE Categories Vendors Ecosystems

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Follow:

Theme:

Home / Vendors / cpanel

cpanel

426 tracked vulnerabilities.

CVE-2017-18388 HIGH

cPanel 61.9999.55-61.9999.9999 - Unsafe File Operations via Jailshell Umask Misconfiguration

CVE-2017-18387 HIGH

cPanel 61.9999.55-62.0.35 - Remote Code Execution via Maketext Injection in Reseller Style Upload

CVE-2017-18386 HIGH

cPanel 61.9999.55-61.9999.9999 - Remote Code Execution via Maketext Injection in PostgresAdmin

CVE-2017-18385 MEDIUM

cPanel 61.9999.55-62.0.35 - Unauthenticated Improper Access Control during Account Restore

CVE-2017-18384 LOW

cPanel 61.9999.55-61.9999.9999 - Improper Access Control via Jailed Account File Restore

CVE-2017-18383 HIGH

cPanel 61.9999.55-61.9999.9999 - Unauthenticated Path Traversal and Arbitrary File Write via Home-Directory Backup

CVE-2017-18382 LOW

cPanel 61.9999.55-62.0.35 - Improper Input Validation in DNS Zone SOA Records

CVE-2017-11441 MEDIUM

cPanel WHM < 56.0.51 - Stored Cross-Site Scripting via Locale Filename Upload

CVE-2017-5616 MEDIUM

cPanel cgiemail and cgiecho - Cross-Site Scripting via Addendum Parameter

CVE-2017-5615 MEDIUM

cPanel cgiemail and cgiecho - HTTP Header Injection via Newline in Redirect Location

CVE-2017-5614 MEDIUM

cPanel 11.54.0.0-11.54.0.35 - Open Redirect via cgiemail/cgiecho Success/Failure Parameter

CVE-2017-5613 HIGH

cPanel cgiecho and cgiemail - Remote Code Execution via Format String Specifiers in Template File

CVE-2016-10812 HIGH

cPanel 11.50.0.4-11.50.6.2 - Unauthenticated TTY Exposure via enablefileprotect Script

CVE-2016-10811 HIGH

cPanel 11.50.0.4-11.50.6.2 - Exposure of Sensitive Information via /scripts/unsuspendacct

CVE-2016-10810 HIGH

cPanel 11.50.0.4-11.50.6.2 - Exposure of Sensitive Information via TTY in maildir_converter

CVE-2016-10809 HIGH

cPanel 11.50.0.4-11.50.6.2 - Exposure of Sensitive Information via /scripts/checkinfopages

CVE-2016-10808 HIGH

cPanel 11.50.0.4-11.50.6.2 - Improper Input Validation in /scripts/addpop and /scripts/delpop

CVE-2016-10807 MEDIUM

cPanel 11.50.0.4-11.50.6.2 - Denial of Service via /scripts/killpvhost

CVE-2016-10806 MEDIUM

cPanel 11.54.0.0-11.54.0.24 - Stored Cross-Site Scripting on Paper Lantern Landing Page

CVE-2016-10805 HIGH

cPanel 11.50.0.4-11.50.6.2 - Authenticated Remote Code Execution via ajax_maketext_syntax_util.pl

CVE-2016-10804 HIGH

cPanel 11.50.0.4-11.50.6.2 - Arbitrary File Overwrite via SQLite Journal Feature

CVE-2016-10803 HIGH

cPanel <57.9999.105 - Info Disclosure

CVE-2016-10802 HIGH

cPanel 11.51.9999.98-11.52.6.2 - Remote Code Execution via PHP CGI Handler

CVE-2016-10801 HIGH

cPanel 11.54.0.0-11.54.0.25 - Improper Session Handling for Shared Users

CVE-2016-10800 HIGH

cPanel 55.9999.61-56.0.27 - Unauthenticated Demo-Mode Escape via Site Templates and Boxtrapper API

Previous Page 12 of 18 Next

Products

cpanel 417 webhost_manager 5 cgiecho 3 cgiemail 3 whm 3 WHM 1 WP Squared 1 cPanel 1 wp_squared 1

Quick Filters

Critical CVEs With Exploits In CISA KEV

Exploit Intelligence Platform

Blog Stats Labs Exploits Researchers CWE Ecosystems CLI MCP API Limits About Privacy