EUVD-2017-9577

Malware in sbrugna...

CVE-2017-18463

cPanel before 62.0.17 allows code execution in the context of the root account via a long DocumentRoot path SEC-225...

Unspecified vulnerability in cPanel (CNVD-2019-27424)

cPanel is a set of Web-based automated colocation platform from the US-based cPanel. The platform is primarily used to automate the management of websites and servers. A security vulnerability exists in versions prior to cPanel 62.0.17. No detailed vulnerability details are provided at this time...

Unspecified vulnerability in cPanel (CNVD-2019-27419)

cPanel is a set of Web-based automated colocation platform from the US-based cPanel. The platform is primarily used to automate the management of websites and servers. A security vulnerability exists in cPanel versions prior to 62.0.17. An attacker can exploit the vulnerability to bypass the...

Unspecified vulnerability in cPanel (CNVD-2019-27418)

cPanel is a set of Web-based automated colocation platform from the US-based cPanel. The platform is primarily used to automate the management of websites and servers. A security vulnerability exists in versions prior to cPanel 62.0.17. An attacker can exploit the vulnerability to arbitrarily...

cPanel Input Validation Error Vulnerability (CNVD-2019-29628)

cPanel is a set of Web-based automated colocation platform from the US-based cPanel. The platform is primarily used to automate the management of websites and servers. A security vulnerability exists in cPanel versions prior to 62.0.17. An attacker can exploit the vulnerability to execute code wi...

Unspecified vulnerability in cPanel (CNVD-2019-27422)

cPanel is a set of Web-based automated colocation platform from the US-based cPanel. The platform is primarily used to automate the management of websites and servers. A security vulnerability exists in cPanel versions prior to 62.0.17. An attacker can exploit the vulnerability to access restrict...

Unspecified vulnerability in cPanel (CNVD-2019-27423)

cPanel is a set of Web-based automated colocation platform from the US-based cPanel. The platform is primarily used to automate the management of websites and servers. A security vulnerability exists in cPanel versions prior to 62.0.17. An attacker can exploit the vulnerability to execute code wi...

cPanel Path Traversal Vulnerability

cPanel is a set of Web-based automated colocation platform from the US-based cPanel. The platform is primarily used to automate the management of websites and servers. A path traversal vulnerability exists in cPanel versions prior to 62.0.17. The vulnerability stems from a failure of a network...

cPanel Input Validation Error Vulnerability (CNVD-2019-27606)

cPanel is a set of Web-based automated colocation platforms from the American company cPanel. The platform is primarily used to automate the management of websites and servers. An input validation error vulnerability exists in cPanel versions prior to 62.0.17. An attacker can exploit the...

CVE-2017-18469

CVE-2017-18469 affects cPanel prior to 62.0.17, where demo accounts can execute code via an NVData_fetchinc API call (SEC-233). Affected software: cPanel versions before 62.0.17. Root cause: exploitable API call allowing code execution. Impact: potential arbitrary code execution by unauthenticate...

CVE-2017-18467

CVE-2017-18467 affects cPanel prior to version 62.0.17. A URL filtering error (SEC-229) allows access to restricted resources. The core issue is a URL filtering flaw in the affected path, enabling unintended resource access. Remediation: upgrade to at least 62.0.17 (as indicated by the CVE descri...

CVE-2017-18462

cPanel before 62.0.17 allows a CPHulk one-day ban bypass when IP-based protection is enabled (SEC-224). The issue is documented across multiple sources as a vulnerability in cPanel up to version 62.0.16, with the fix in 62.0.17 identified. Root cause details are not elaborated in the provided doc...

CVE-2017-18459

cPanel before 62.0.17 allows arbitrary code execution during account modification SEC-220...

CVE-2017-18455

In cPanel before 62.0.17, addon domain conversion did not require a package for resellers SEC-208...

CVE-2017-18458

CVE-2017-18458 affects cPanel prior to 62.0.17. The issue allows a file to be overwritten when renaming an account (SEC-219). Primary information comes from cPanel advisories and vendor records; no exploit details are provided in the documents. The available sources confirm the affected product/v...

CVE-2017-18457

CVE-2017-18457 affects cPanel prior to 62.0.17. The issue permits arbitrary file-read using WHM /styled/ URLs (SEC-218), due to a path handling flaw. Red Hat and other sources confirm the same vulnerability description. Affected product: cPanel/WHM. Impact: potential exposure of sensitive server ...