CVE-2016-10847

cPanel before 11.54.0.4 allows arbitrary file-read and file-write operations via scripts/fixmailboxpath SEC-80...

CVE-2016-10839

cPanel before 11.54.0.4 allows SQL injection in bin/hordeupdateusernames SEC-71...

CVE-2016-10844

The chcpass script in cPanel before 11.54.0.4 reveals a password hash SEC-77...

cPanel Access Control Error Vulnerability (CNVD-2019-36148)

cPanel is a set of Web-based automated colocation platform from the US-based cPanel. The platform is primarily used to automate the management of websites and servers. An Access Control Error vulnerability exists in cPanel versions prior to 11.54.0.4. The vulnerability stems from a network system...

Unspecified vulnerability in cPanel (CNVD-2019-36146)

cPanel is a set of Web-based automated colocation platform from the US-based cPanel. The platform is primarily used to automate the management of websites and servers. A security vulnerability exists in versions of cPanel prior to 11.54.0.4. An attacker can exploit the vulnerability to execute...

cPanel Command Injection Vulnerability (CNVD-2019-36139)

cPanel is a set of Web-based automated colocation platform from the US-based cPanel. The platform is primarily used to automate the management of websites and servers. A command injection vulnerability exists in cPanel versions prior to 11.54.0.4. The vulnerability stems from a network system or...

cPanel Injection Vulnerability (CNVD-2019-36138)

cPanel is a set of Web-based automated colocation platform from the US-based cPanel. The platform is primarily used to automate the management of websites and servers. An injection vulnerability exists in cPanel versions prior to 11.54.0.4. The vulnerability stems from a lack of proper validation...

Unspecified vulnerability in cPanel (CNVD-2019-36143)

cPanel is a set of Web-based automated colocation platforms from the American company cPanel. The platform is primarily used to automate the management of websites and servers. A security vulnerability exists in versions of cPanel prior to 11.54.0.4. An attacker can exploit the vulnerability to...

cPanel Injection Vulnerability (CNVD-2019-36141)

cPanel is a set of Web-based automated colocation platform from the US-based cPanel. The platform is primarily used to automate the management of websites and servers. An injection vulnerability exists in cPanel versions prior to 11.54.0.4. The vulnerability stems from a lack of proper validation...

cPanel Code Problem Vulnerability

cPanel is a set of Web-based automated colocation platform from the US-based cPanel. The platform is primarily used to automate the management of websites and servers. A code issue vulnerability exists in versions of cPanel prior to 11.54.0.4. An attacker can exploit this vulnerability to execute...

cPanel Information Disclosure Vulnerability (CNVD-2019-36144)

cPanel is a set of Web-based automated colocation platform from the US-based cPanel. The platform is primarily used to automate the management of websites and servers. An information disclosure vulnerability exists in versions of cPanel prior to 11.54.0.4. The vulnerability stems from an error in...

cPanel Authorization Issues Vulnerability (CNVD-2019-36140)

cPanel is a set of Web-based automated colocation platform from the US-based cPanel. The platform is primarily used to automate the management of websites and servers. An authorization issue vulnerability exists in versions of cPanel prior to 11.54.0.4. The vulnerability stems from a lack of...

CVE-2016-10844

The chcpass script in cPanel before 11.54.0.4 reveals a password hash SEC-77...

CVE-2016-10848

cPanel before 11.54.0.4 allows arbitrary file-overwrite operations in scripts/quotacheck SEC-81...

CVE-2016-10846

cPanel before 11.54.0.4 allows arbitrary file-chown and file-chmod operations during Roundcube database conversions SEC-79...

Design/Logic Flaw

cPanel before 11.54.0.4 allows arbitrary code execution during locale duplication SEC-72...

CVE-2016-10838

CVE-2016-10838 affects cPanel prior to 11.54.0.4, where the bin/fmq script allows arbitrary file-read operations. Root cause is a vulnerability in the bin/fmq routine enabling access to files that should be restricted. The impact is confidentiality loss (C of CVSS) with no listed impact to integr...

CVE-2016-10843

cPanel before 11.54.0.4 allows code execution in the context of shared users via JSON-API SEC-76...

CVE-2016-10848

CVE-2016-10848 affects cPanel prior to 11.54.0.4, allowing arbitrary file-overwrite operations in scripts/quotacheck (SEC-81). The issue is documented across multiple sources (NVD, Red Hat advisory) with a high impact rating (C/V: high; A: high) and network attack vector. The provided materials d...

CVE-2016-10850

cPanel before 11.54.0.4 allows arbitrary code execution via scripts/synccpaddonswithsqlhost SEC-83...