Cpanel Security Vulnerabilities

CVE-2020-10115

cPanel before 84.0.20, when PowerDNS is used, allows arbitrary code execution as root via dnsadmin....

CVE-2019-20493

cPanel before 82.0.18 allows self-XSS because JSON string escaping is mishandled...

CVE-2019-20491

cPanel before 82.0.18 allows attackers to leverage virtual mail accounts in order to bypass account suspensions...

CVE-2012-6449

The clientconf.html and detailbw.html pages in x3 in cPanel & WHM 11.34.0 (build 8) have a XSS...

CVE-2019-17375

cPanel before 82.0.15 allows API token credentials to persist after an account has been renamed or terminated...

CVE-2019-17380

cPanel before 82.0.15 allows self XSS in the WHM Update Preferences interface...

CVE-2019-17377

cPanel before 82.0.15 allows self XSS in LiveAPI example scripts...

CVE-2019-17376

cPanel before 82.0.15 allows self XSS in the SSL Certificate Upload interface...

CVE-2019-17379

cPanel before 82.0.15 allows self stored XSS in the WHM SSL Storage Manager interface...

CVE-2019-17378

cPanel before 82.0.15 allows self XSS in the SSL Key Delete interface...

CVE-2016-10800

cPanel before 58.0.4 allows demo-mode escape via Site Templates and Boxtrapper API calls...

CVE-2016-10806

cPanel before 57.9999.54 allows self XSS on the Paper Lantern Landing Page...

CVE-2016-10801

cPanel before 58.0.4 has improper session handling for shared users...

CVE-2016-10810

In cPanel before 57.9999.54, /scripts/maildir_converter exposed a TTY to an unprivileged process...

CVE-2016-10798

cPanel before 58.0.4 allows a file-ownership change (to nobody) via rearrangeacct...

CVE-2016-10803

cPanel before 57.9999.105 allows newline injection via LOC records...

CVE-2016-10805

cPanel before 57.9999.54 allows demo accounts to execute arbitrary code via ajax_maketext_syntax_util.pl...

CVE-2016-10802

cPanel before 58.0.4 allows code execution in the context of other user accounts through the PHP CGI handler...

CVE-2016-10809

In cPanel before 57.9999.54, /scripts/checkinfopages exposed a TTY to an unprivileged process...

CVE-2016-10811

In cPanel before 57.9999.54, /scripts/unsuspendacct exposed TTYs...

CVE-2016-10812

In cPanel before 57.9999.54, /scripts/enablefileprotect exposed TTYs...

CVE-2016-10799

cPanel before 58.0.4 does not set the Pear tmp directory during a PHP installation...

CVE-2016-10804

The SQLite journal feature in cPanel before 57.9999.54 allows arbitrary file-overwrite operations during Horde Restore...

CVE-2016-10807

cPanel before 57.9999.54 allows certain denial-of-service outcomes via /scripts/killpvhost...

CVE-2016-10808

In cPanel before 57.9999.54, /scripts/addpop and /scripts/delpop exposed TTYs...

CVE-2016-10797

cPanel before 58.0.4 allows WHM "Purchase and Install an SSL Certificate" page visitors to list all server domains...

CVE-2016-10791

cPanel before 60.0.15 does not ensure that system accounts lack a valid password, so that logins are impossible...

CVE-2016-10793

cPanel before 59.9999.145 allows arbitrary code execution due to an incorrect #! in Mail::SPF scripts...

CVE-2016-10796

cPanel before 58.0.4 initially uses weak permissions for Apache HTTP Server log files...

CVE-2016-10792

cPanel before 59.9999.145 allows code execution in the context of other accounts via mailman list archives...

CVE-2016-10795

cPanel before 59.9999.145 allows stored XSS in the WHM tail_upcp2.cgi interface...

CVE-2016-10794

cPanel before 59.9999.145 allows arbitrary file-read operations because of a multipart form processing error...

CVE-2016-10777

cPanel before 60.0.25 allows self XSS in WHM Tweak Settings for autodiscover_host...

CVE-2016-10783

cPanel before 60.0.25 allows self stored XSS in SSL_listkeys...

CVE-2016-10787

The Host Access Control feature in cPanel before 60.0.25 mishandles actionless host.deny entries...

CVE-2016-10789

cPanel before 60.0.25 allows code execution via the cpsrvd 403 error response handler...

CVE-2016-10778

cPanel before 60.0.25 allows self stored XSS in the listftpstable API...

CVE-2016-10781

cPanel before 60.0.25 allows self XSS in the UI_confirm API...

CVE-2016-10785

cPanel before 60.0.25 allows attackers to discover file contents during file copy operations...

CVE-2016-10782

cPanel before 60.0.25 allows self stored XSS in postgres API1 listdbs...

CVE-2016-10786

cPanel before 60.0.25 allows members of the nobody group to read Apache HTTP Server SSL keys...

CVE-2016-10788

cPanel before 60.0.25 allows arbitrary code execution via Maketext in PostgreSQL adminbin...

CVE-2016-10779

cPanel before 60.0.25 allows stored XSS in api1_listautoresponders...

CVE-2016-10776

cPanel before 60.0.25 allows stored XSS during the homedir removal phase of WHM Account termination...

CVE-2016-10790

cPanel before 60.0.25 does not use TLS for HTTP POSTs to listinput.cpanel.net...

CVE-2016-10780

cPanel before 60.0.25 allows stored XSS in the ftp_sessions API...

CVE-2016-10784

cPanel before 60.0.25 allows self XSS in the alias upload interface...

CVE-2016-10772

cPanel before 60.0.25 does not enforce feature-list restrictions when calling the multilang adminbin...

CVE-2016-10773

cPanel before 60.0.25 allows format-string injection in exception-message handling...

CVE-2016-10768

cPanel before 60.0.25 allows file-overwrite operations during preparation for MySQL upgrades...