CVE-2016-10833

HIGH

cPanel 11.50.0.4-11.50.5.2 - Improper Authentication via cPHulkd Username Blocking Bypass

Title source: llm

cPanel before 55.9999.141 mishandles username-based blocking for PRE requests in cPHulkd (SEC-104).

Core 1

Core References

Release Notes, Vendor Advisory x_refsource_misc

CVSS v3 7.5

EPSS 0.0050

EPSS Percentile 66.0%

Attack Vector NETWORK

CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

CWE

CWE-287

Status published

Products (1)

cpanel/cpanel 11.50.0.4 - 11.50.5.2

Published Aug 01, 2019

Tracked Since Feb 18, 2026