CVE-2018-20864

MEDIUM

cPanel < 76.0.8 - Persistent Virtual FTP Accounts After Domain Removal

Title source: llm

cPanel before 76.0.8 allows a persistent Virtual FTP accounts after removal of its associated domain (SEC-454).

Core 1

Core References

Release Notes, Vendor Advisory x_refsource_confirm

CVSS v3 6.5

EPSS 0.0045

EPSS Percentile 63.7%

Attack Vector NETWORK

CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:N

CWE

CWE-20

Status published

Products (1)

cpanel/cpanel < 76.0.8

Published Jul 30, 2019

Tracked Since Feb 18, 2026