5 matches found
CVE-2018-20935
cPanel before 70.0.23 allows stored XSS in via a WHM "Reset a DNS Zone" action SEC-412...
CVE-2018-20925
cPanel before 70.0.23 allows local privilege escalation via the WHM Legacy Language File Upload interface SEC-379...
CVE-2018-20922
cPanel before 70.0.23 allows stored XSS via a WHM DNS Cleanup action SEC-376...
Command injection
cPanel before 70.0.23 allows demo accounts to execute code via awstats SEC-362...
CVE-2018-20922
cPanel before 70.0.23 allows stored XSS via a WHM DNS Cleanup action SEC-376...