Cpanel Security Vulnerabilities

CVE-2017-18397

cPanel before 68.0.15 does not preserve permissions for local backup transport...

CVE-2017-18401

cPanel before 68.0.15 allows user accounts to be partially created with invalid username formats...

CVE-2017-18402

cPanel before 68.0.15 allows stored XSS during a cpaddons moderated upgrade...

CVE-2017-18400

cPanel before 68.0.15 allows local root code execution via cpdavd...

CVE-2017-18386

cPanel before 68.0.15 allows arbitrary code execution via Maketext injection in PostgresAdmin...

CVE-2017-18388

cPanel before 68.0.15 can perform unsafe file operations because Jailshell does not set the umask...

CVE-2017-18389

cPanel before 68.0.15 allows string format injection in dovecot-xaps-plugin...

CVE-2017-18391

cPanel before 68.0.15 allows attackers to read backup files because they are world-readable during a short time interval...

CVE-2017-18383

cPanel before 68.0.15 writes home-directory backups to an incorrect location...

CVE-2017-18385

cPanel before 68.0.15 allows unprivileged users to access restricted directories during account restores...

CVE-2017-18390

cPanel before 68.0.15 allows code execution in the context of the root account because of weak permissions on incremental backups...

CVE-2017-18387

cPanel before 68.0.15 allows arbitrary code execution via Maketext injection in a Reseller style upload...

CVE-2017-18382

cPanel before 68.0.15 allows use of an unreserved e-mail address in DNS zone SOA records...

CVE-2017-18384

cPanel before 68.0.15 allows jailed accounts to restore files that are outside of the jail...

CVE-2016-10821

In cPanel before 55.9999.141, Scripts/addpop reveals a command-line password in a process list...

CVE-2016-10826

cPanel before 55.9999.141 allows attackers to bypass Two Factor Authentication via DNS clustering requests...

CVE-2016-10820

cPanel before 55.9999.141 allows daemons to access their controlling TTYs...

CVE-2016-10818

cPanel before 57.9999.54 incorrectly sets log-file permissions in dnsadmin-startup and spamd-startup...

CVE-2016-10819

In cPanel before 57.9999.54, user log files become world-readable when rotated by cpanellogd...

CVE-2016-10816

cPanel before 57.9999.54 allows Webmail accounts to execute arbitrary code through forwarders...

CVE-2016-10814

cPanel before 57.9999.54 allows demo-mode escape via show_template.stor...

CVE-2016-10815

cPanel before 57.9999.54 allows arbitrary file-read operations for Webmail accounts via Branding APIs...

CVE-2016-10817

cPanel before 57.9999.54 allows SQL Injection via the ModSecurity TailWatch log file...

CVE-2016-10813

cPanel before 57.9999.54 allows self XSS during ftp account creation under addon domains...

CVE-2018-20949

cPanel before 68.0.27 allows self XSS in WHM Apache Configuration Include Editor...

CVE-2018-20951

cPanel before 68.0.27 allows self XSS in WHM Spamd Startup Config...

CVE-2018-20953

cPanel before 68.0.27 allows self XSS in the WHM listips interface...

CVE-2018-20948

cPanel before 68.0.27 allows self XSS in cPanel Backup Restoration...

CVE-2018-20950

cPanel before 68.0.27 allows self stored XSS in WHM Account Transfer...

CVE-2018-20952

cPanel before 68.0.27 creates world-readable files during use of WHM Apache Includes Editor...

CVE-2018-20940

cPanel before 68.0.27 allows attackers to read root's crontab file during a short time interval upon the enabling of backups...

CVE-2018-20943

cPanel before 68.0.27 allows attackers to read root's crontab file during a short time interval upon a post-update task...

CVE-2018-20936

cPanel before 68.0.27 allows attackers to read the SRS secret via exim.conf...

CVE-2018-20937

cPanel before 68.0.27 does not validate database and dbuser names during renames...

CVE-2018-20942

cPanel before 68.0.27 allows attackers to read root's crontab file during a short time interval upon configuring crontab...

CVE-2018-20944

cPanel before 68.0.27 allows attackers to read a copy of httpd.conf that is created during a syntax test...

CVE-2018-20945

bin/csvprocess in cPanel before 68.0.27 allows insecure file operations...

CVE-2018-20946

cPanel before 68.0.27 allows attackers to read zone information because a world-readable archive is created by the archive_sync_zones script...

CVE-2018-20947

cPanel before 68.0.27 allows certain file-write operations via the telnetcrt script...

CVE-2016-10834

cPanel before 55.9999.141 allows account-suspension bypass via ftp...

CVE-2016-10835

cPanel before 55.9999.141 allows a POP/IMAP cPHulk bypass via account name munging...

CVE-2018-20938

cPanel before 68.0.27 does not enforce ownership during addpkgext and delpkgext WHM API calls...

CVE-2018-20939

cPanel before 68.0.27 allows a user to discover contents of directories (that are not owned by that user) by leveraging backups...

CVE-2018-20941

cPanel before 68.0.27 allows arbitrary file-read operations via restore adminbin...

CVE-2016-10827

cPanel before 55.9999.141 allows self stored XSS in WHM Edit System Mail Preferences...

CVE-2016-10828

cPanel before 55.9999.141 allows arbitrary code execution because of an unsafe @INC path...

CVE-2016-10825

cPanel before 55.9999.141 allows attackers to bypass a Security Policy by faking static documents...

CVE-2016-10833

cPanel before 55.9999.141 mishandles username-based blocking for PRE requests in cPHulkd...

CVE-2016-10822

cPanel before 55.9999.141 allows self XSS in X3 Reseller Branding Images...

CVE-2016-10824

cPanel before 55.9999.141 allows unauthenticated arbitrary code execution via DNS NS entry poisoning...