cpanel

426 tracked vulnerabilities.

CVE-2016-10799 MEDIUM
cPanel 11.51.9999.98-11.52.6.2 - Improper Access Control via Pear tmp Directory
Aug 07, 2019
CVSS 5.5
EPSS 0.00
CVE-2016-10798 MEDIUM
cPanel 55.9999.61-56.0.27 - Race Condition via rearrangeacct
Aug 07, 2019
CVSS 6.8
EPSS 0.00
CVE-2016-10797 MEDIUM
cPanel 55.9999.61-56.0.27 - Unauthorized Domain List Exposure via WHM SSL Certificate Purchase Page
Aug 06, 2019
CVSS 4.3
EPSS 0.00
CVE-2016-10796 LOW
cPanel 11.51.9999.98-11.52.6.2 - Weak Apache HTTP Server Log File Permissions
Aug 06, 2019
CVSS 3.3
EPSS 0.00
CVE-2016-10795 MEDIUM
cPanel 11.51.9999.98-11.52.6.6 - Stored Cross-Site Scripting in WHM tail_upcp2.cgi Interface
Aug 06, 2019
CVSS 6.1
EPSS 0.00
CVE-2016-10794 MEDIUM
cPanel 11.51.9999.98-11.52.6.6 - Arbitrary File Read via Multipart Form Processing Error
Aug 06, 2019
CVSS 6.5
EPSS 0.00
CVE-2016-10793 HIGH
cPanel 11.51.9999.98-11.52.6.6 - Remote Code Execution via Mail::SPF Script Shebang
Aug 06, 2019
CVSS 8.8
EPSS 0.01
CVE-2016-10792 HIGH
cPanel 11.51.9999.98-11.52.6.6 - Remote Code Execution via Mailman List Archives
Aug 06, 2019
CVSS 8.8
EPSS 0.01
CVE-2016-10791 MEDIUM
cPanel < 60.0.15 - Unauthenticated System Account Access via Weak Password
Aug 06, 2019
CVSS 5.3
EPSS 0.00
CVE-2016-10790 HIGH
cPanel 11.54.0.0-11.54.0.33 - Unauthenticated Sensitive Information Exposure via HTTP POST to listinput.cpanel.net
Aug 06, 2019
CVSS 7.5
EPSS 0.00
CVE-2016-10789 HIGH
cPanel 11.54.0.0-11.54.0.33 - Remote Code Execution via cpsrvd 403 Error Response Handler
Aug 06, 2019
CVSS 8.8
EPSS 0.01
CVE-2016-10788 HIGH
cPanel 11.54.0.0-11.54.0.33 - Remote Code Execution via Maketext in PostgreSQL adminbin
Aug 06, 2019
CVSS 8.8
EPSS 0.01
CVE-2016-10787 HIGH
cPanel 11.54.0.0-11.54.0.33 - Improper Input Validation in Host Access Control
Aug 06, 2019
CVSS 8.1
EPSS 0.00
CVE-2016-10786 MEDIUM
cPanel 11.54.0.0-11.54.0.32 - Unauthorized Apache SSL Key Exposure
Aug 06, 2019
CVSS 6.5
EPSS 0.00
CVE-2016-10785 MEDIUM
cPanel 11.54.0.0-11.54.0.32 - Unauthorized File Content Exposure during File Copy Operations
Aug 06, 2019
CVSS 6.5
EPSS 0.00
CVE-2016-10784 MEDIUM
cPanel 11.54.0.0-11.54.0.33 - Self Cross-Site Scripting in Alias Upload Interface
Aug 06, 2019
CVSS 5.4
EPSS 0.00
CVE-2016-10783 MEDIUM
cPanel 11.54.0.0-11.54.0.33 - Stored Cross-Site Scripting in SSL_listkeys
Aug 06, 2019
CVSS 5.4
EPSS 0.00
CVE-2016-10782 MEDIUM
cPanel 11.54.0.0-11.54.0.33 - Stored Cross-Site Scripting in PostgreSQL API1 listdbs
Aug 06, 2019
CVSS 5.4
EPSS 0.00
CVE-2016-10781 MEDIUM
cPanel 11.54.0.0-11.54.0.32 - Self Cross-Site Scripting in UI_confirm API
Aug 06, 2019
CVSS 5.4
EPSS 0.00
CVE-2016-10780 MEDIUM
cPanel 11.54.0.0-11.54.0.32 - Stored Cross-Site Scripting in FTP Sessions API
Aug 06, 2019
CVSS 5.4
EPSS 0.00
CVE-2016-10779 MEDIUM
cPanel 11.54.0.0-11.54.0.33 - Stored Cross-Site Scripting in api1_listautoresponders
Aug 06, 2019
CVSS 5.4
EPSS 0.00
CVE-2016-10778 MEDIUM
cPanel 11.54.0.0-11.54.0.33 - Stored Cross-Site Scripting via listftpstable API
Aug 06, 2019
CVSS 5.4
EPSS 0.00
CVE-2016-10777 MEDIUM
cPanel 11.54.0.0-11.54.0.33 - Self Cross-Site Scripting in WHM Tweak Settings
Aug 06, 2019
CVSS 5.4
EPSS 0.00
CVE-2016-10776 MEDIUM
cPanel 11.54.0.0-11.54.0.33 - Stored Cross-Site Scripting in WHM Account Termination
Aug 06, 2019
CVSS 5.4
EPSS 0.00
CVE-2016-10775 MEDIUM
cPanel 11.54.0.0-11.54.0.33 - Arbitrary File Chown via reassign_post_terminate_cruft
Aug 05, 2019
CVSS 6.5
EPSS 0.00
Products
cpanel 417 webhost_manager 5 cgiecho 3 cgiemail 3 whm 3 WHM 1 WP Squared 1 cPanel 1 wp_squared 1
Quick Filters
Critical CVEs With Exploits In CISA KEV