Lucene search
K

121 matches found

Positive Technologies
Positive Technologies
added 2026/05/12 12:0 a.m.19 views

PT-2026-40440

Name of the Vulnerable Software and Affected Versions cPanel & WHM affected versions not specified Description Improper sanitization of the status query parameter in the '/unprotected/nova error' endpoint allows an unauthenticated attacker to inject arbitrary HTTP headers into the response...

8.3CVSS5.9AI score0.00301EPSS
Exploits0References10
Positive Technologies
Positive Technologies
added 2026/05/08 12:0 a.m.13 views

PT-2026-38674

Name of the Vulnerable Software and Affected Versions cPanel versions prior to 11.136.0.9 cPanel versions prior to 11.136.1.10 WP Squared cPanel versions prior to 11.134.0.25 cPanel versions prior to 11.132.0.31 cPanel versions prior to 11.130.0.22 cPanel versions prior to 11.126.0.58 cPanel...

8.8CVSS6.1AI score0.0083EPSS
Exploits0References36
GithubExploit
GithubExploit
added 2026/05/03 8:15 p.m.105 views

Exploit for Missing Authentication for Critical Function in Cpanel

CVE-2026-41940-POC cPanel/WHM Authentication Bypass Proof of...

9.8CVSS6AI score0.981EPSS
Exploits64
GithubExploit
GithubExploit
added 2026/05/02 10:0 a.m.80 views

Exploit for Missing Authentication for Critical Function in Cpanel

CVE-2026-41940 - cPanel & WHM Authentication Bypass Proof of C...

9.8CVSS5.9AI score0.981EPSS
Exploits64
CISA KEV Catalog
CISA KEV Catalog
added 2026/04/30 12:0 a.m.7 views

WebPros cPanel & WHM and WP2 (WordPress Squared) Missing Authentication for Critical Function Vulnerability

WebPros cPanel & WHM WebHost Manager and WP2 WordPress Squared contain an authentication bypass vulnerability in the login flow that allows unauthenticated remote attackers to gain unauthorized access to the control panel...

9.8CVSS5.5AI score0.981EPSS
In wildExploits64
Positive Technologies
Positive Technologies
added 2026/04/29 12:0 a.m.11 views

PT-2026-35936

Name of the Vulnerable Software and Affected Versions cPanel versions prior to 11.86.0.41 cPanel versions prior to 11.110.0.97 cPanel versions prior to 11.118.0.63 cPanel versions prior to 11.124.0.35 cPanel versions prior to 11.126.0.54 cPanel versions prior to 11.130.0.19 cPanel versions prior ...

9.8CVSS7.8AI score0.981EPSS
Exploits64
RedhatCVE
RedhatCVE
added 2026/01/09 10:32 a.m.5 views

CVE-2017-18456

cPanel before 62.0.17 allows self XSS in the WHM cPAddons showsecurity interface SEC-217...

6.1CVSS6.3AI score0.00647EPSS
Exploits0References1
EUVD
EUVD
added 2025/10/07 12:30 a.m.6 views

EUVD-2007-2267

Malware in sbrugna...

7.5CVSS6.4AI score0.05953EPSS
Exploits1References5
EUVD
EUVD
added 2025/10/07 12:30 a.m.4 views

EUVD-2012-6301

Malware in sbrugna...

6.1CVSS6.3AI score0.01534EPSS
Exploits0References2
EUVD
EUVD
added 2025/10/07 12:30 a.m.8 views

EUVD-2006-6531

Malware in sbrugna...

3.5CVSS6.4AI score0.00842EPSS
Exploits0References5
EUVD
EUVD
added 2025/10/07 12:30 a.m.7 views

EUVD-2008-2896

Malware in sbrugna...

6.8CVSS6.4AI score0.00914EPSS
Exploits1References5
EUVD
EUVD
added 2025/10/07 12:30 a.m.4 views

EUVD-2007-0886

Malware in sbrugna...

4.3CVSS6.4AI score0.01765EPSS
Exploits1References7
EUVD
EUVD
added 2025/10/07 12:30 a.m.8 views

EUVD-2006-2616

Malware in sbrugna...

5CVSS6.4AI score0.01654EPSS
Exploits0References10
EUVD
EUVD
added 2025/10/07 12:30 a.m.7 views

EUVD-2006-2617

Malware in sbrugna...

4.3CVSS6.4AI score0.0118EPSS
Exploits0References6
EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2007-4097

Malware in sbrugna...

3.5CVSS6.4AI score0.00924EPSS
Exploits1References5
EUVD
EUVD
added 2025/10/07 12:30 a.m.4 views

EUVD-2006-2615

Malware in sbrugna...

7.5CVSS6.4AI score0.01413EPSS
Exploits0References9
EUVD
EUVD
added 2025/10/07 12:30 a.m.4 views

EUVD-2011-0530

Malware in sbrugna...

7.5CVSS6.4AI score0.0204EPSS
Exploits1References4
EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2006-6181

Malware in sbrugna...

6CVSS6.4AI score0.01762EPSS
Exploits1References6
RedhatCVE
RedhatCVE
added 2025/05/22 4:17 p.m.5 views

CVE-2020-25950

Advanced Webhost Billing System 3.7.0 is affected by Cross Site Request Forgery CSRF attacks that can delete a contact from the My Additional Contact page...

4.3CVSS7.1AI score0.00427EPSS
Exploits1
RedhatCVE
RedhatCVE
added 2025/05/22 5:17 a.m.4 views

CVE-2018-20903

cPanel before 71.9980.37 allows self XSS in the WHM Backup Configuration interface SEC-421...

6.1CVSS6.3AI score0.00647EPSS
Exploits0References1
Rows per page
Query Builder