MidnightBSD

Advisories for cpanel

CVE-2003-0521 MEDIUM

Cross-site scripting (XSS) vulnerability in cPanel 6.4.2 allows remote attackers to insert arbitrary HTML and possibly gain cPanel administrator privileges via script in a URL that is logged but not properly quoted when displayed via the (1) Error Log or (2) Latest Visitors screens.

CVSS 2.0

Severity: MEDIUM

Problem Type: NVD-CWE-Other,

Products Affected

Vendor Product Version
cpanel cpanel 5.0
cpanel cpanel 6.4.2_stable_48
cpanel cpanel 6.4.2
cpanel cpanel 6.0
cpanel cpanel 6.2
cpanel cpanel 6.4
cpanel cpanel 5.3
cpanel cpanel 6.4.1
CVE-2003-1425 HIGH

guestbook.cgi in cPanel 5.0 allows remote attackers to execute arbitrary commands via the template parameter.

CVSS 2.0

Severity: HIGH

Problem Type: CWE-20,

Products Affected

Vendor Product Version
cpanel cpanel 5.0
CVE-2003-1426 LOW

Openwebmail in cPanel 5.0, when run using suid Perl, adds the directory in the SCRIPT_FILENAME environment variable to Perl's @INC include array, which allows local users to execute arbitrary code by modifying SCRIPT_FILENAME to reference a directory containing a malicious openwebmail-shared.pl executable.

CVSS 2.0

Severity: LOW

Problem Type: CWE-16,

Products Affected

Vendor Product Version
cpanel cpanel 5.0
CVE-2004-0490 HIGH

cPanel, when compiling Apache 1.3.29 and PHP with the mod_phpsuexec option, does not set the --enable-discard-path option, which causes php to use the SCRIPT_FILENAME variable to find and execute a script instead of the PATH_TRANSLATED variable, which allows local users to execute arbitrary PHP code as other users via a URL that references the attacker's script after the user's script, which executes the attacker's script with the user's privileges, a different vulnerability than CVE-2004-0529.

CVSS 2.0

Severity: HIGH

Problem Type: NVD-CWE-Other,

Products Affected

Vendor Product Version
cpanel cpanel 6.4.2_stable_48
cpanel cpanel 6.4.2
cpanel cpanel 6.0
cpanel cpanel 6.2
cpanel cpanel 5.3
cpanel cpanel 8.0
cpanel cpanel 9.1
cpanel cpanel 9.1.0_r85
cpanel cpanel 5.0
cpanel cpanel 9.0
cpanel cpanel 7.0
cpanel cpanel 6.4
cpanel cpanel 6.4.1
CVE-2004-1603 MEDIUM

cPanel 9.4.1-RELEASE-64 follows hard links, which allows local users to (1) read arbitrary files via the backup feature or (2) chown arbitrary files via the .htaccess file when Front Page extensions are enabled or disabled.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 5.5 MEDIUM CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N 1.8 3.6

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-59,

Products Affected

Vendor Product Version
cpanel cpanel 9.4.1
CVE-2004-1604 MEDIUM

cPanel 9.9.1-RELEASE-3 allows remote authenticated users to chmod arbitrary files via a symlink attack on the _private directory, which is created when Front Page extensions are enabled.

CVSS 2.0

Severity: MEDIUM

Problem Type: NVD-CWE-Other,

Products Affected

Vendor Product Version
cpanel cpanel 9.9.1_r3
CVE-2004-1769 HIGH

The "Allow cPanel users to reset their password via email" feature in cPanel 9.1.0 build 34 and earlier, including 8.x, allows remote attackers to execute arbitrary code via the user parameter to resetpass.

CVSS 2.0

Severity: HIGH

Problem Type: NVD-CWE-Other,

Products Affected

Vendor Product Version
cpanel cpanel 6.4.2_stable_48
cpanel cpanel 6.4.2
cpanel cpanel 6.0
cpanel cpanel 6.2
cpanel cpanel 5.3
cpanel cpanel 8.0
cpanel cpanel 9.1
cpanel cpanel 5.0
cpanel cpanel 9.0
cpanel cpanel 7.0
cpanel cpanel 6.4
cpanel cpanel 6.4.1
CVE-2004-1770 HIGH

The login page for cPanel 9.1.0, and possibly other versions, allows remote attackers to execute arbitrary code via shell metacharacters in the user parameter.

CVSS 2.0

Severity: HIGH

Problem Type: NVD-CWE-Other,

Products Affected

Vendor Product Version
cpanel cpanel 6.4.2_stable_48
cpanel cpanel 6.4.2
cpanel cpanel 6.0
cpanel cpanel 6.2
cpanel cpanel 5.3
cpanel cpanel 8.0
cpanel cpanel 9.1
cpanel cpanel 5.0
cpanel cpanel 9.0
cpanel cpanel 7.0
cpanel cpanel 6.4
cpanel cpanel 6.4.1
CVE-2004-1849 MEDIUM

Multiple cross-site scripting (XSS) vulnerabilities in cPanel 9.1.0 allow remote attackers to inject arbitrary web script or HTML via the (1) email parameter to dodelautores.html or (2) handle parameter to addhandle.html.

CVSS 2.0

Severity: MEDIUM

Problem Type: NVD-CWE-Other,

Products Affected

Vendor Product Version
cpanel cpanel 9.1
CVE-2004-1875 HIGH

Multiple cross-site scripting (XSS) vulnerabilities in cPanel 9.1.0-R85 allow remote attackers to inject arbitrary web script or HTML via the (1) email parameter to testfile.html, (2) file parameter to erredit.html, (3) dns parameter to dnslook.html, (4) account parameter to ignorelist.html, (5) account parameter to showlog.html, (6) db parameter to repairdb.html, (7) login parameter to doaddftp.html (8) account parameter to editmsg.htm, or (9) ip parameter to del.html. NOTE: the dnslook.html vector was later reported to exist in cPanel 10.

CVSS 2.0

Severity: HIGH

Problem Type: CWE-79,

Products Affected

Vendor Product Version
cpanel cpanel 9.1.0_r85
CVE-2004-2308 MEDIUM

Cross-site scripting (XSS) vulnerability in cPanel 9.1.0 and possibly earlier allows remote attackers to inject arbitrary web script or HTML via the dir parameter in dohtaccess.html.

CVSS 2.0

Severity: MEDIUM

Problem Type: NVD-CWE-Other,

Products Affected

Vendor Product Version
cpanel cpanel 6.4.2_stable_48
cpanel cpanel 6.4.2
cpanel cpanel 6.0
cpanel cpanel 6.2
cpanel cpanel 5.3
cpanel cpanel 8.0
cpanel cpanel 9.1
cpanel cpanel 5.0
cpanel cpanel 9.0
cpanel cpanel 7.0
cpanel cpanel 6.4
cpanel cpanel 6.4.1
CVE-2005-2021 MEDIUM

Cross-site scripting (XSS) vulnerability in cPanel 9.1 and earlier allows remote attackers to inject arbitrary web script or HTML via the user parameter in the login page.

CVSS 2.0

Severity: MEDIUM

Problem Type: NVD-CWE-Other,

Products Affected

Vendor Product Version
cpanel cpanel 6.4.2_stable_48
cpanel cpanel 6.4.2
cpanel cpanel 6.0
cpanel cpanel 6.2
cpanel cpanel 5.3
cpanel cpanel 8.0
cpanel cpanel 9.1
cpanel cpanel 5.0
cpanel cpanel 9.0
cpanel cpanel 7.0
cpanel cpanel 6.4
cpanel cpanel 6.4.1
CVE-2005-3505 MEDIUM

Cross-site scripting (XSS) vulnerability in the Entropy Chat script in cPanel 10.2.0-R82 and 10.6.0-R137 allows remote attackers to inject arbitrary web script or HTML via a chat message containing Javascript in style attributes in tags such as <b>, which are processed by Internet Explorer.

CVSS 2.0

Severity: MEDIUM

Problem Type: NVD-CWE-Other,

Products Affected

Vendor Product Version
cpanel cpanel 10.2.0_r82
cpanel cpanel 10.6.0_r137
CVE-2006-0533 MEDIUM

Cross-site scripting (XSS) vulnerability in webmailaging.cgi in cPanel allows remote attackers to inject arbitrary web script or HTML via the numdays parameter.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-79,

Products Affected

Vendor Product Version
cpanel cpanel -
CVE-2006-0573 MEDIUM

Multiple cross-site scripting (XSS) vulnerabilies in cPanel 10 and earlier allow remote attackers to inject arbitrary web script or HTML via the (1) email parameter to (a) editquota.html or (b) dodelpop.html; (2) showtree parameter to (c) diskusage.html; or the (3) mon, (4) year, (5) target, or (6) domain parameter to (d) stats/detailbw.html.

CVSS 2.0

Severity: MEDIUM

Problem Type: NVD-CWE-Other,

Products Affected

Vendor Product Version
cpanel cpanel 6.4.2_stable_48
cpanel cpanel 6.4.2
cpanel cpanel 6.0
cpanel cpanel 6.2
cpanel cpanel 5.3
cpanel cpanel 8.0
cpanel cpanel 9.1
cpanel cpanel 5.0
cpanel cpanel 10
cpanel cpanel 9.0
cpanel cpanel 7.0
cpanel cpanel 6.4
cpanel cpanel 6.4.1
CVE-2006-0574 MEDIUM

Cross-site scripting (XSS) vulnerability in mime/handle.html in cPanel 10 allows remote attackers to inject arbitrary web script or HTML via the (1) file extension or (2) mime-type.

CVSS 2.0

Severity: MEDIUM

Problem Type: NVD-CWE-Other,

Products Affected

Vendor Product Version
cpanel cpanel 10
CVE-2006-0763 MEDIUM

Cross-site scripting (XSS) vulnerability in dowebmailforward.cgi in cPanel allows remote attackers to inject arbitrary web script or HTML via a URL encoded value in the fwd parameter.

CVSS 2.0

Severity: MEDIUM

Problem Type: NVD-CWE-Other,

Products Affected

Vendor Product Version
cpanel cpanel *
CVE-2006-2825 MEDIUM

cPanel does not automatically synchronize the PHP open_basedir configuration directive between the main server and virtual hosts that share physical directories, which might allow a local user to bypass open_basedir restrictions and access other virtual hosts via a PHP script that uses a main server URL (such as ~username) that is blocked by the user's own open_basedir directive, but not the main server's open_basedir directive.

CVSS 2.0

Severity: MEDIUM

Problem Type: NVD-CWE-Other,

Products Affected

Vendor Product Version
cpanel cpanel *
CVE-2006-3337 LOW

Cross-site scripting (XSS) vulnerability in frontend/x/files/select.html in cPanel 10.8.2-CURRENT 118 and earlier allows remote attackers to inject arbitrary web script or HTML via the file parameter.

CVSS 2.0

Severity: LOW

Problem Type: NVD-CWE-Other,

Products Affected

Vendor Product Version
cpanel cpanel *
CVE-2008-2070 MEDIUM

The WHM interface 11.15.0 for cPanel 11.18 before 11.18.4 and 11.22 before 11.22.3 allows remote attackers to bypass XSS protection and inject arbitrary script or HTML via repeated, improperly-ordered "<" and ">" characters in the (1) issue parameter to scripts2/knowlegebase, (2) user parameter to scripts2/changeip, (3) search parameter to scripts2/listaccts, and other unspecified vectors.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-79,

Products Affected

Vendor Product Version
cpanel cpanel 11.18.2
cpanel cpanel 11.18
cpanel cpanel 11.22.1
cpanel cpanel 11.18.3
cpanel cpanel 11.22
cpanel cpanel 11.22.2
cpanel cpanel 11.18.1
CVE-2008-2071 MEDIUM

Multiple cross-site request forgery (CSRF) vulnerabilities in the WHM interface 11.15.0 for cPanel 11.18 before 11.18.4 and 11.22 before 11.22.3 allow remote attackers to perform unauthorized actions as cPanel administrators via requests to cpanel/whm/webmail and other unspecified vectors.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-352,

Products Affected

Vendor Product Version
cpanel cpanel 11.18.2
cpanel cpanel 11.18
cpanel cpanel 11.22.1
cpanel cpanel 11.18.3
cpanel cpanel 11.22
cpanel cpanel 11.22.2
cpanel cpanel 11.18.1
CVE-2008-2478 HIGH

scripts/wwwacct in cPanel 11.18.6 STABLE and earlier and 11.23.1 CURRENT and earlier allows remote authenticated users with reseller privileges to execute arbitrary code via shell metacharacters in the Email address field (aka Email text box). NOTE: the vendor disputes this, stating "I'm unable to reproduce such an issue on multiple servers running different versions of cPanel.

CVSS 2.0

Severity: HIGH

Problem Type: CWE-94,

Products Affected

Vendor Product Version
cpanel cpanel *
CVE-2009-4823 MEDIUM

Cross-site scripting (XSS) vulnerability in frontend/x3/files/fileop.html in cPanel 11.0 through 11.24.7 allows remote attackers to inject arbitrary web script or HTML via the fileop parameter.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-79,

Products Affected

Vendor Product Version
cpanel cpanel 11.18.4
cpanel cpanel 11.4.19
cpanel cpanel 11.18.2
cpanel cpanel 11.19.3
cpanel cpanel 11.24.7
cpanel cpanel 11.18
cpanel cpanel 11.0
cpanel cpanel 11.18.3
cpanel cpanel 11.21
cpanel cpanel 11.22.3
cpanel cpanel 11.16
cpanel cpanel 11.22.1
cpanel cpanel 11.24
cpanel cpanel 11.22
cpanel cpanel 11.22.2
cpanel cpanel 11.18.1
CVE-2012-6448 MEDIUM

Cross-site Scripting (XSS) in cPanel WebHost Manager (WHM) 11.34.0 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 6.1 MEDIUM CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N 2.8 2.7

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-79,

Products Affected

Vendor Product Version
cpanel webhost_manager 11.34.0
CVE-2012-6449 LOW

The clientconf.html and detailbw.html pages in x3 in cPanel & WHM 11.34.0 (build 8) have a XSS vulnerability.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 5.4 MEDIUM CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N 2.3 2.7

CVSS 2.0

Severity: LOW

Problem Type: CWE-79,

Products Affected

Vendor Product Version
cpanel whm 11.34.0
cpanel cpanel 11.34.0
CVE-2015-9291 MEDIUM

cPanel before 11.52.0.13 does not prevent arbitrary file-read operations via get_information_for_applications (CPANEL-1221).

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-284,

Products Affected

Vendor Product Version
cpanel cpanel *
CVE-2016-10767 LOW

cPanel before 60.0.25 allows stored XSS in the WHM Repair Mailbox Permissions interface (SEC-159).

CVSS 2.0

Severity: LOW

Problem Type: CWE-79,

Products Affected

Vendor Product Version
cpanel cpanel *
CVE-2016-10768 MEDIUM

cPanel before 60.0.25 allows file-overwrite operations during preparation for MySQL upgrades (SEC-161).

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-20,

Products Affected

Vendor Product Version
cpanel cpanel *
CVE-2016-10769 MEDIUM

cPanel before 60.0.25 allows an open redirect via /cgi-sys/FormMail-clone.cgi (SEC-162).

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-601,

Products Affected

Vendor Product Version
cpanel cpanel *
CVE-2016-10770 MEDIUM

cPanel before 60.0.25 allows arbitrary file-overwrite operations during a Roundcube update (SEC-164).

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-20,

Products Affected

Vendor Product Version
cpanel cpanel *
CVE-2016-10771 MEDIUM

cPanel before 60.0.25 allows file-create and file-chmod operations during ModSecurity Audit logfile processing (SEC-165).

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-20,

Products Affected

Vendor Product Version
cpanel cpanel *
CVE-2016-10772 LOW

cPanel before 60.0.25 does not enforce feature-list restrictions when calling the multilang adminbin (SEC-168).

CVSS 2.0

Severity: LOW

Problem Type: CWE-254,

Products Affected

Vendor Product Version
cpanel cpanel *
CVE-2016-10773 MEDIUM

cPanel before 60.0.25 allows format-string injection in exception-message handling (SEC-171).

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-134,

Products Affected

Vendor Product Version
cpanel cpanel *
CVE-2016-10774 LOW

cPanel before 60.0.25 allows self XSS in the tail_ea4_migration.cgi interface (SEC-172).

CVSS 2.0

Severity: LOW

Problem Type: CWE-79,

Products Affected

Vendor Product Version
cpanel cpanel *
CVE-2016-10775 MEDIUM

cPanel before 60.0.25 allows arbitrary file-chown operations via reassign_post_terminate_cruft (SEC-173).

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-20,

Products Affected

Vendor Product Version
cpanel cpanel *
CVE-2016-10776 LOW

cPanel before 60.0.25 allows stored XSS during the homedir removal phase of WHM Account termination (SEC-174).

CVSS 2.0

Severity: LOW

Problem Type: CWE-79,

Products Affected

Vendor Product Version
cpanel cpanel *
CVE-2016-10777 LOW

cPanel before 60.0.25 allows self XSS in WHM Tweak Settings for autodiscover_host (SEC-177).

CVSS 2.0

Severity: LOW

Problem Type: CWE-79,

Products Affected

Vendor Product Version
cpanel cpanel *
CVE-2016-10778 LOW

cPanel before 60.0.25 allows self stored XSS in the listftpstable API (SEC-178).

CVSS 2.0

Severity: LOW

Problem Type: CWE-79,

Products Affected

Vendor Product Version
cpanel cpanel *
CVE-2016-10779 LOW

cPanel before 60.0.25 allows stored XSS in api1_listautoresponders (SEC-179).

CVSS 2.0

Severity: LOW

Problem Type: CWE-79,

Products Affected

Vendor Product Version
cpanel cpanel *
CVE-2016-10780 LOW

cPanel before 60.0.25 allows stored XSS in the ftp_sessions API (SEC-180).

CVSS 2.0

Severity: LOW

Problem Type: CWE-79,

Products Affected

Vendor Product Version
cpanel cpanel *
CVE-2016-10781 LOW

cPanel before 60.0.25 allows self XSS in the UI_confirm API (SEC-180).

CVSS 2.0

Severity: LOW

Problem Type: CWE-79,

Products Affected

Vendor Product Version
cpanel cpanel *
CVE-2016-10782 LOW

cPanel before 60.0.25 allows self stored XSS in postgres API1 listdbs (SEC-181).

CVSS 2.0

Severity: LOW

Problem Type: CWE-79,

Products Affected

Vendor Product Version
cpanel cpanel *
CVE-2016-10783 LOW

cPanel before 60.0.25 allows self stored XSS in SSL_listkeys (SEC-182).

CVSS 2.0

Severity: LOW

Problem Type: CWE-79,

Products Affected

Vendor Product Version
cpanel cpanel *
CVE-2016-10784 LOW

cPanel before 60.0.25 allows self XSS in the alias upload interface (SEC-184).

CVSS 2.0

Severity: LOW

Problem Type: CWE-79,

Products Affected

Vendor Product Version
cpanel cpanel *
CVE-2016-10785 MEDIUM

cPanel before 60.0.25 allows attackers to discover file contents during file copy operations (SEC-185).

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-200,

Products Affected

Vendor Product Version
cpanel cpanel *
CVE-2016-10786 MEDIUM

cPanel before 60.0.25 allows members of the nobody group to read Apache HTTP Server SSL keys (SEC-186).

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-200,

Products Affected

Vendor Product Version
cpanel cpanel *
CVE-2016-10787 MEDIUM

The Host Access Control feature in cPanel before 60.0.25 mishandles actionless host.deny entries (SEC-187).

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-20,

Products Affected

Vendor Product Version
cpanel cpanel *
CVE-2016-10788 HIGH

cPanel before 60.0.25 allows arbitrary code execution via Maketext in PostgreSQL adminbin (SEC-188).

CVSS 2.0

Severity: HIGH

Problem Type: CWE-20,

Products Affected

Vendor Product Version
cpanel cpanel *
CVE-2016-10789 MEDIUM

cPanel before 60.0.25 allows code execution via the cpsrvd 403 error response handler (SEC-191).

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-20,

Products Affected

Vendor Product Version
cpanel cpanel *
CVE-2016-10790 MEDIUM

cPanel before 60.0.25 does not use TLS for HTTP POSTs to listinput.cpanel.net (SEC-192).

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-200,

Products Affected

Vendor Product Version
cpanel cpanel *
CVE-2016-10791 MEDIUM

cPanel before 60.0.15 does not ensure that system accounts lack a valid password, so that logins are impossible (CPANEL-9559).

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-255,

Products Affected

Vendor Product Version
cpanel cpanel *
CVE-2016-10792 MEDIUM

cPanel before 59.9999.145 allows code execution in the context of other accounts via mailman list archives (SEC-141).

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-284,

Products Affected

Vendor Product Version
cpanel cpanel *
CVE-2016-10793 MEDIUM

cPanel before 59.9999.145 allows arbitrary code execution due to an incorrect #! in Mail::SPF scripts (SEC-152).

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-20,

Products Affected

Vendor Product Version
cpanel cpanel *
CVE-2016-10794 MEDIUM

cPanel before 59.9999.145 allows arbitrary file-read operations because of a multipart form processing error (SEC-154).

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-200,

Products Affected

Vendor Product Version
cpanel cpanel *
CVE-2016-10795 MEDIUM

cPanel before 59.9999.145 allows stored XSS in the WHM tail_upcp2.cgi interface (SEC-156).

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-79,

Products Affected

Vendor Product Version
cpanel cpanel *
CVE-2016-10796 LOW

cPanel before 58.0.4 initially uses weak permissions for Apache HTTP Server log files (SEC-130).

CVSS 2.0

Severity: LOW

Problem Type: CWE-275,

Products Affected

Vendor Product Version
cpanel cpanel *
CVE-2016-10797 MEDIUM

cPanel before 58.0.4 allows WHM "Purchase and Install an SSL Certificate" page visitors to list all server domains (SEC-133).

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-200,

Products Affected

Vendor Product Version
cpanel cpanel *
CVE-2016-10798 MEDIUM

cPanel before 58.0.4 allows a file-ownership change (to nobody) via rearrangeacct (SEC-134).

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-362,

Products Affected

Vendor Product Version
cpanel cpanel *
CVE-2016-10799 LOW

cPanel before 58.0.4 does not set the Pear tmp directory during a PHP installation (SEC-137).

CVSS 2.0

Severity: LOW

Problem Type: CWE-284,

Products Affected

Vendor Product Version
cpanel cpanel *
CVE-2016-10800 MEDIUM

cPanel before 58.0.4 allows demo-mode escape via Site Templates and Boxtrapper API calls (SEC-138).

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-20,

Products Affected

Vendor Product Version
cpanel cpanel *
CVE-2016-10801 MEDIUM

cPanel before 58.0.4 has improper session handling for shared users (SEC-139).

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-74,

Products Affected

Vendor Product Version
cpanel cpanel *
CVE-2016-10802 MEDIUM

cPanel before 58.0.4 allows code execution in the context of other user accounts through the PHP CGI handler (SEC-142).

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-284,

Products Affected

Vendor Product Version
cpanel cpanel *
CVE-2016-10803 MEDIUM

cPanel before 57.9999.105 allows newline injection via LOC records (CPANEL-6923).

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-93,

Products Affected

Vendor Product Version
cpanel cpanel *
CVE-2016-10804 HIGH

The SQLite journal feature in cPanel before 57.9999.54 allows arbitrary file-overwrite operations during Horde Restore (SEC-58).

CVSS 2.0

Severity: HIGH

Problem Type: CWE-20,

Products Affected

Vendor Product Version
cpanel cpanel *
CVE-2016-10805 MEDIUM

cPanel before 57.9999.54 allows demo accounts to execute arbitrary code via ajax_maketext_syntax_util.pl (SEC-109).

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-20,

Products Affected

Vendor Product Version
cpanel cpanel *
CVE-2016-10806 LOW

cPanel before 57.9999.54 allows self XSS on the Paper Lantern Landing Page (SEC-110).

CVSS 2.0

Severity: LOW

Problem Type: CWE-79,

Products Affected

Vendor Product Version
cpanel cpanel *
CVE-2016-10807 MEDIUM

cPanel before 57.9999.54 allows certain denial-of-service outcomes via /scripts/killpvhost (SEC-112).

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-20,

Products Affected

Vendor Product Version
cpanel cpanel *
CVE-2016-10808 HIGH

In cPanel before 57.9999.54, /scripts/addpop and /scripts/delpop exposed TTYs (SEC-113).

CVSS 2.0

Severity: HIGH

Problem Type: CWE-20,

Products Affected

Vendor Product Version
cpanel cpanel *
CVE-2016-10809 HIGH

In cPanel before 57.9999.54, /scripts/checkinfopages exposed a TTY to an unprivileged process (SEC-114).

CVSS 2.0

Severity: HIGH

Problem Type: CWE-200,

Products Affected

Vendor Product Version
cpanel cpanel *
CVE-2016-10810 HIGH

In cPanel before 57.9999.54, /scripts/maildir_converter exposed a TTY to an unprivileged process (SEC-115).

CVSS 2.0

Severity: HIGH

Problem Type: CWE-200,

Products Affected

Vendor Product Version
cpanel cpanel *
CVE-2016-10811 HIGH

In cPanel before 57.9999.54, /scripts/unsuspendacct exposed TTYs (SEC-116).

CVSS 2.0

Severity: HIGH

Problem Type: CWE-200,

Products Affected

Vendor Product Version
cpanel cpanel *
CVE-2016-10812 HIGH

In cPanel before 57.9999.54, /scripts/enablefileprotect exposed TTYs (SEC-117).

CVSS 2.0

Severity: HIGH

Problem Type: CWE-20,

Products Affected

Vendor Product Version
cpanel cpanel *
CVE-2016-10813 LOW

cPanel before 57.9999.54 allows self XSS during ftp account creation under addon domains (SEC-118).

CVSS 2.0

Severity: LOW

Problem Type: CWE-79,

Products Affected

Vendor Product Version
cpanel cpanel *
CVE-2016-10814 MEDIUM

cPanel before 57.9999.54 allows demo-mode escape via show_template.stor (SEC-119).

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-20,

Products Affected

Vendor Product Version
cpanel cpanel *
CVE-2016-10815 MEDIUM

cPanel before 57.9999.54 allows arbitrary file-read operations for Webmail accounts via Branding APIs (SEC-120).

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-200,

Products Affected

Vendor Product Version
cpanel cpanel *
CVE-2016-10816 MEDIUM

cPanel before 57.9999.54 allows Webmail accounts to execute arbitrary code through forwarders (SEC-121).

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-20,

Products Affected

Vendor Product Version
cpanel cpanel *
CVE-2016-10817 HIGH

cPanel before 57.9999.54 allows SQL Injection via the ModSecurity TailWatch log file (SEC-123).

CVSS 2.0

Severity: HIGH

Problem Type: CWE-89,

Products Affected

Vendor Product Version
cpanel cpanel *
CVE-2016-10818 MEDIUM

cPanel before 57.9999.54 incorrectly sets log-file permissions in dnsadmin-startup and spamd-startup (SEC-124).

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-275,

Products Affected

Vendor Product Version
cpanel cpanel *
CVE-2016-10819 MEDIUM

In cPanel before 57.9999.54, user log files become world-readable when rotated by cpanellogd (SEC-125).

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-532,

Products Affected

Vendor Product Version
cpanel cpanel *
CVE-2016-10820 HIGH

cPanel before 55.9999.141 allows daemons to access their controlling TTYs (SEC-31).

CVSS 2.0

Severity: HIGH

Problem Type: CWE-284,

Products Affected

Vendor Product Version
cpanel cpanel *
CVE-2016-10821 MEDIUM

In cPanel before 55.9999.141, Scripts/addpop reveals a command-line password in a process list (SEC-75).

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-255,

Products Affected

Vendor Product Version
cpanel cpanel *
CVE-2016-10822 LOW

cPanel before 55.9999.141 allows self XSS in X3 Reseller Branding Images (SEC-88).

CVSS 2.0

Severity: LOW

Problem Type: CWE-79,

Products Affected

Vendor Product Version
cpanel cpanel *
CVE-2016-10823 HIGH

cPanel before 55.9999.141 allows arbitrary code execution in the context of the root account because of MakeText interpolation (SEC-89).

CVSS 2.0

Severity: HIGH

Problem Type: CWE-20,

Products Affected

Vendor Product Version
cpanel cpanel *
CVE-2016-10824 HIGH

cPanel before 55.9999.141 allows unauthenticated arbitrary code execution via DNS NS entry poisoning (SEC-90).

CVSS 2.0

Severity: HIGH

Problem Type: CWE-20,

Products Affected

Vendor Product Version
cpanel cpanel *
CVE-2016-10825 MEDIUM

cPanel before 55.9999.141 allows attackers to bypass a Security Policy by faking static documents (SEC-92).

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-358,

Products Affected

Vendor Product Version
cpanel cpanel *
CVE-2016-10826 MEDIUM

cPanel before 55.9999.141 allows attackers to bypass Two Factor Authentication via DNS clustering requests (SEC-93).

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-287,

Products Affected

Vendor Product Version
cpanel cpanel *
CVE-2016-10827 LOW

cPanel before 55.9999.141 allows self stored XSS in WHM Edit System Mail Preferences (SEC-96).

CVSS 2.0

Severity: LOW

Problem Type: CWE-79,

Products Affected

Vendor Product Version
cpanel cpanel *
CVE-2016-10828 HIGH

cPanel before 55.9999.141 allows arbitrary code execution because of an unsafe @INC path (SEC-97).

CVSS 2.0

Severity: HIGH

Problem Type: CWE-22,

Products Affected

Vendor Product Version
cpanel cpanel *
CVE-2016-10829 MEDIUM

cPanel before 55.9999.141 allows arbitrary file-read operations because of a multipart form processing error (SEC-99).

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-552,

Products Affected

Vendor Product Version
cpanel cpanel *
CVE-2016-10830 MEDIUM

cPanel before 55.9999.141 allows ACL bypass for AppConfig applications via magic_revision (SEC-100).

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-284,

Products Affected

Vendor Product Version
cpanel cpanel *
CVE-2016-10831 MEDIUM

cPanel before 55.9999.141 does not perform as two-factor authentication check when possessing another account (SEC-101).

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-287,

Products Affected

Vendor Product Version
cpanel cpanel *
CVE-2016-10832 MEDIUM

cPanel before 55.9999.141 allows FTP cPHulk bypass via account name munging (SEC-102).

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-287,

Products Affected

Vendor Product Version
cpanel cpanel *
CVE-2016-10833 MEDIUM

cPanel before 55.9999.141 mishandles username-based blocking for PRE requests in cPHulkd (SEC-104).

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-287,

Products Affected

Vendor Product Version
cpanel cpanel *
CVE-2016-10834 MEDIUM

cPanel before 55.9999.141 allows account-suspension bypass via ftp (SEC-105).

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-358,

Products Affected

Vendor Product Version
cpanel cpanel *
CVE-2016-10835 MEDIUM

cPanel before 55.9999.141 allows a POP/IMAP cPHulk bypass via account name munging (SEC-107).

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-287,

Products Affected

Vendor Product Version
cpanel cpanel *
CVE-2016-10836 MEDIUM

cPanel before 55.9999.141 allows arbitrary file-read operations during authentication with caldav (SEC-108).

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-287,

Products Affected

Vendor Product Version
cpanel cpanel *
CVE-2016-10837 HIGH

cPanel before 11.54.0.4 allows arbitrary code execution because of an unsafe @INC path (SEC-46).

CVSS 2.0

Severity: HIGH

Problem Type: CWE-426,

Products Affected

Vendor Product Version
cpanel cpanel *
CVE-2016-10838 MEDIUM

cPanel before 11.54.0.4 allows arbitrary file-read operations via the bin/fmq script (SEC-70).

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-284,

Products Affected

Vendor Product Version
cpanel cpanel *
CVE-2016-10839 MEDIUM

cPanel before 11.54.0.4 allows SQL injection in bin/horde_update_usernames (SEC-71).

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-89,

Products Affected

Vendor Product Version
cpanel cpanel *
CVE-2016-10840 HIGH

cPanel before 11.54.0.4 allows arbitrary code execution during locale duplication (SEC-72).

CVSS 2.0

Severity: HIGH

Problem Type: CWE-668,

Products Affected

Vendor Product Version
cpanel cpanel *
CVE-2016-10841 LOW

The bin/mkvhostspasswd script in cPanel before 11.54.0.4 discloses password hashes (SEC-73).

CVSS 2.0

Severity: LOW

Problem Type: CWE-199,

Products Affected

Vendor Product Version
cpanel cpanel *
CVE-2016-10842 MEDIUM

cPanel before 11.54.0.4 allows certain file-read operations in bin/setup_global_spam_filter.pl (SEC-74).

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-20,

Products Affected

Vendor Product Version
cpanel cpanel *
CVE-2016-10843 MEDIUM

cPanel before 11.54.0.4 allows code execution in the context of shared users via JSON-API (SEC-76).

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-77,

Products Affected

Vendor Product Version
cpanel cpanel *
CVE-2016-10844 MEDIUM

The chcpass script in cPanel before 11.54.0.4 reveals a password hash (SEC-77).

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-200,

Products Affected

Vendor Product Version
cpanel cpanel *
CVE-2016-10845 MEDIUM

cPanel before 11.54.0.4 allows arbitrary file-overwrite operations in scripts/check_system_storable (SEC-78).

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-74,

Products Affected

Vendor Product Version
cpanel cpanel *
CVE-2016-10846 HIGH

cPanel before 11.54.0.4 allows arbitrary file-chown and file-chmod operations during Roundcube database conversions (SEC-79).

CVSS 2.0

Severity: HIGH

Problem Type: CWE-275,

Products Affected

Vendor Product Version
cpanel cpanel *
CVE-2016-10847 MEDIUM

cPanel before 11.54.0.4 allows arbitrary file-read and file-write operations via scripts/fixmailboxpath (SEC-80).

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-74,

Products Affected

Vendor Product Version
cpanel cpanel *
CVE-2016-10848 HIGH

cPanel before 11.54.0.4 allows arbitrary file-overwrite operations in scripts/quotacheck (SEC-81).

CVSS 2.0

Severity: HIGH

Problem Type: CWE-285,

Products Affected

Vendor Product Version
cpanel cpanel *
CVE-2016-10849 MEDIUM

cPanel before 11.54.0.4 allows certain file-chmod operations in scripts/secureit (SEC-82).

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-77,

Products Affected

Vendor Product Version
cpanel cpanel *
CVE-2016-10850 HIGH

cPanel before 11.54.0.4 allows arbitrary code execution via scripts/synccpaddonswithsqlhost (SEC-83).

CVSS 2.0

Severity: HIGH

Problem Type: CWE-20,

Products Affected

Vendor Product Version
cpanel cpanel *
CVE-2016-10851 LOW

cPanel before 11.54.0.4 allows self XSS in the WHM PHP Configuration editor interface (SEC-84).

CVSS 2.0

Severity: LOW

Problem Type: CWE-79,

Products Affected

Vendor Product Version
cpanel cpanel *
CVE-2016-10852 MEDIUM

cPanel before 11.54.0.4 lacks ACL enforcement in the AppConfig subsystem (SEC-85).

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-284,

Products Affected

Vendor Product Version
cpanel cpanel *
CVE-2016-10853 LOW

cPanel before 11.54.0.4 allows stored XSS in the WHM Feature Manager interface (SEC-86).

CVSS 2.0

Severity: LOW

Problem Type: CWE-79,

Products Affected

Vendor Product Version
cpanel cpanel *
CVE-2016-10854 LOW

cPanel before 11.54.0.4 allows self XSS in the X3 Entropy Banner interface (SEC-87).

CVSS 2.0

Severity: LOW

Problem Type: CWE-79,

Products Affected

Vendor Product Version
cpanel cpanel *
CVE-2016-10855 HIGH

cPanel before 11.54.0.4 allows unauthenticated arbitrary code execution via cpsrvd (SEC-91).

CVSS 2.0

Severity: HIGH

Problem Type: CWE-20,

Products Affected

Vendor Product Version
cpanel cpanel *
CVE-2016-10856 MEDIUM

cPanel before 11.54.0.0 allows subaccounts to discover sensitive data through comet feeds (SEC-29).

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-284,

Products Affected

Vendor Product Version
cpanel cpanel *
CVE-2016-10857 MEDIUM

cPanel before 11.54.0.0 allows a bypass of the e-mail sending limit (SEC-60).

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-284,

Products Affected

Vendor Product Version
cpanel cpanel *
CVE-2016-10858 HIGH

cPanel before 11.54.0.0 allows unauthenticated arbitrary code execution via DNS NS entry poisoning (SEC-64).

CVSS 2.0

Severity: HIGH

Problem Type: CWE-20,

Products Affected

Vendor Product Version
cpanel cpanel *
CVE-2016-10859 MEDIUM

cPanel before 11.54.0.0 allows unauthorized password changes via Webmail API commands (SEC-65).

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-285,

Products Affected

Vendor Product Version
cpanel cpanel *
CVE-2016-10860 MEDIUM

cPanel before 11.54.0.0 allows unauthorized zone modification via the WHM API (SEC-66).

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-284,

Products Affected

Vendor Product Version
cpanel cpanel *
CVE-2017-11441 LOW

The WHM Upload Locale interface in cPanel before 56.0.51, 58.x before 58.0.52, 60.x before 60.0.45, 62.x before 62.0.27, 64.x before 64.0.33, and 66.x before 66.0.2 has XSS via a locale filename, aka SEC-297.

CVSS 2.0

Severity: LOW

Problem Type: CWE-79,

Products Affected

Vendor Product Version
cpanel whm 64.0.22
cpanel whm 62.0.9
cpanel whm 60.0.22
cpanel whm 58.0.36
cpanel whm 62.0.19
cpanel whm 58.0.13
cpanel whm 58.0.12
cpanel whm 58.0.19
cpanel whm 60.0.24
cpanel whm 60.0.39
cpanel whm 60.0.3
cpanel whm 62.0.14
cpanel whm 64.0.14
cpanel whm 64.0.18
cpanel whm 64.0.7
cpanel whm 60.0.36
cpanel whm 64.0.27
cpanel whm 60.0.38
cpanel whm 58.0.50
cpanel whm 64.0.2
cpanel whm 64.0.12
cpanel whm 60.0.27
cpanel whm 58.0.41
cpanel whm 62.0.17
cpanel whm 58.0.31
cpanel whm 58.0.34
cpanel whm 64.0.28
cpanel whm 62.0.6
cpanel whm 58.0.24
cpanel whm 58.0.7
cpanel whm 60.0.6
cpanel whm 60.0.15
cpanel whm 60.0.42
cpanel whm 66.0.1
cpanel whm 62.0.23
cpanel whm 58.0.37
cpanel whm 60.0.17
cpanel whm 58.0.3
cpanel whm 58.0.17
cpanel whm 64.0.1
cpanel whm 62.0.24
cpanel whm 58.0.4
cpanel whm 60.0.28
cpanel whm 62.0.20
cpanel whm 58.0.26
cpanel whm 64.0.30
cpanel whm 58.0.43
cpanel whm 60.0.13
cpanel whm 60.0.32
cpanel whm 62.0.11
cpanel whm 64.0.24
cpanel whm 58.0.47
cpanel whm 64.0.17
cpanel whm 58.0.27
cpanel whm 62.0.7
cpanel whm 64.0.29
cpanel whm 60.0.5
cpanel whm 60.0.12
cpanel whm 60.0.10
cpanel whm 58.0.51
cpanel whm 58.0.46
cpanel whm 58.0.11
cpanel whm 62.0.10
cpanel whm 58.0.30
cpanel whm 60.0.25
cpanel whm 58.0.49
cpanel whm 62.0.15
cpanel whm 60.0.35
cpanel whm 60.0.4
cpanel whm 60.0.34
cpanel whm 58.0.29
cpanel whm 64.0.21
cpanel whm 64.0.9
cpanel whm 58.0.28
cpanel whm 64.0.20
cpanel whm 62.0.5
cpanel whm 64.0.32
cpanel whm 58.0.6
cpanel whm 60.0.37
cpanel whm 64.0.15
cpanel whm 64.0.19
cpanel whm 60.0.18
cpanel whm 60.0.44
cpanel whm 58.0.44
cpanel whm 58.0.45
cpanel whm 58.0.48
cpanel whm 62.0.16
cpanel whm 64.0.13
cpanel whm 58.0.32
cpanel whm 60.0.11
cpanel whm 60.0.14
cpanel whm 58.0.5
cpanel whm 62.0.1
cpanel whm 60.0.26
cpanel whm 64.0.3
cpanel whm 64.0.31
cpanel whm *
cpanel whm 58.0.25
cpanel whm 62.0.12
cpanel whm 60.0.9
cpanel whm 64.0.11
cpanel whm 62.0.2
cpanel whm 60.0.8
cpanel whm 64.0.4
cpanel whm 64.0.0
cpanel whm 58.0.8
cpanel whm 58.0.20
cpanel whm 62.0.8
cpanel whm 60.0.19
cpanel whm 62.0.26
cpanel whm 60.0.43
cpanel whm 62.0.4
cpanel whm 60.0.31
cpanel whm 58.0.23
CVE-2017-18382 MEDIUM

cPanel before 68.0.15 allows use of an unreserved e-mail address in DNS zone SOA records (SEC-306).

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-20,

Products Affected

Vendor Product Version
cpanel cpanel *
CVE-2017-18383 MEDIUM

cPanel before 68.0.15 writes home-directory backups to an incorrect location (SEC-309).

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-264,

Products Affected

Vendor Product Version
cpanel cpanel *
CVE-2017-18384 LOW

cPanel before 68.0.15 allows jailed accounts to restore files that are outside of the jail (SEC-310).

CVSS 2.0

Severity: LOW

Problem Type: CWE-284,

Products Affected

Vendor Product Version
cpanel cpanel *
CVE-2017-18385 LOW

cPanel before 68.0.15 allows unprivileged users to access restricted directories during account restores (SEC-311).

CVSS 2.0

Severity: LOW

Problem Type: CWE-284,

Products Affected

Vendor Product Version
cpanel cpanel *
CVE-2017-18386 HIGH

cPanel before 68.0.15 allows arbitrary code execution via Maketext injection in PostgresAdmin (SEC-313).

CVSS 2.0

Severity: HIGH

Problem Type: CWE-74,

Products Affected

Vendor Product Version
cpanel cpanel *
CVE-2017-18387 HIGH

cPanel before 68.0.15 allows arbitrary code execution via Maketext injection in a Reseller style upload (SEC-314).

CVSS 2.0

Severity: HIGH

Problem Type: CWE-74,

Products Affected

Vendor Product Version
cpanel cpanel *
CVE-2017-18388 HIGH

cPanel before 68.0.15 can perform unsafe file operations because Jailshell does not set the umask (SEC-315).

CVSS 2.0

Severity: HIGH

Problem Type: CWE-20,

Products Affected

Vendor Product Version
cpanel cpanel *
CVE-2017-18389 MEDIUM

cPanel before 68.0.15 allows string format injection in dovecot-xaps-plugin (SEC-318).

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-74,

Products Affected

Vendor Product Version
cpanel cpanel *
CVE-2017-18390 HIGH

cPanel before 68.0.15 allows code execution in the context of the root account because of weak permissions on incremental backups (SEC-322).

CVSS 2.0

Severity: HIGH

Problem Type: CWE-275,

Products Affected

Vendor Product Version
cpanel cpanel *
CVE-2017-18391 LOW

cPanel before 68.0.15 allows attackers to read backup files because they are world-readable during a short time interval (SEC-323).

CVSS 2.0

Severity: LOW

Problem Type: CWE-200,

Products Affected

Vendor Product Version
cpanel cpanel *
CVE-2017-18392 LOW

cPanel before 68.0.15 allows collisions because PostgreSQL databases can be assigned to multiple accounts (SEC-325).

CVSS 2.0

Severity: LOW

Problem Type: CWE-20,

Products Affected

Vendor Product Version
cpanel cpanel *
CVE-2017-18393 MEDIUM

cPanel before 68.0.15 does not block a username of postmaster, which might allow reception of private e-mail (SEC-326).

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-20,

Products Affected

Vendor Product Version
cpanel cpanel *
CVE-2017-18394 MEDIUM

cPanel before 68.0.15 does not have a sufficient list of reserved usernames (SEC-327).

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-20,

Products Affected

Vendor Product Version
cpanel cpanel *
CVE-2017-18395 MEDIUM

cPanel before 68.0.15 does not block a username of ssl (SEC-328).

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-20,

Products Affected

Vendor Product Version
cpanel cpanel *
CVE-2017-18396 MEDIUM

cPanel before 68.0.15 allows arbitrary file-read operations via Exim vdomainaliases (SEC-329).

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-200,

Products Affected

Vendor Product Version
cpanel cpanel *
CVE-2017-18397 LOW

cPanel before 68.0.15 does not preserve permissions for local backup transport (SEC-330).

CVSS 2.0

Severity: LOW

Problem Type: CWE-275,

Products Affected

Vendor Product Version
cpanel cpanel *
CVE-2017-18398 MEDIUM

DnsUtils in cPanel before 68.0.15 allows zone creation for hostname and account subdomains (SEC-331).

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-20,

Products Affected

Vendor Product Version
cpanel cpanel *
CVE-2017-18399 MEDIUM

cPanel before 68.0.15 allows attackers to read root's crontab file during a short time interval upon enabling or disabling sqloptimizer (SEC-332).

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-264,

Products Affected

Vendor Product Version
cpanel cpanel *
CVE-2017-18400 HIGH

cPanel before 68.0.15 allows local root code execution via cpdavd (SEC-333).

CVSS 2.0

Severity: HIGH

Problem Type: CWE-77,

Products Affected

Vendor Product Version
cpanel cpanel *
CVE-2017-18401 MEDIUM

cPanel before 68.0.15 allows user accounts to be partially created with invalid username formats (SEC-334).

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-20,

Products Affected

Vendor Product Version
cpanel cpanel *
CVE-2017-18402 LOW

cPanel before 68.0.15 allows stored XSS during a cpaddons moderated upgrade (SEC-336).

CVSS 2.0

Severity: LOW

Problem Type: CWE-79,

Products Affected

Vendor Product Version
cpanel cpanel *
CVE-2017-18403 MEDIUM

cPanel before 68.0.15 allows code execution in the context of the nobody account via Mailman archives (SEC-337).

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-284,

Products Affected

Vendor Product Version
cpanel cpanel *
CVE-2017-18404 MEDIUM

cPanel before 68.0.15 allows domain data to be deleted for domains with the .lock TLD (SEC-341).

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-284,

Products Affected

Vendor Product Version
cpanel cpanel *
CVE-2017-18405 LOW

cPanel before 68.0.15 allows arbitrary file-read operations because of the backup .htaccess modification logic (SEC-345).

CVSS 2.0

Severity: LOW

Problem Type: CWE-20,

Products Affected

Vendor Product Version
cpanel cpanel *
CVE-2017-18406 MEDIUM

cPanel before 67.9999.103 allows SQL injection during eximstats processing (SEC-276).

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-89,

Products Affected

Vendor Product Version
cpanel cpanel *
CVE-2017-18407 MEDIUM

cPanel before 67.9999.103 does not enforce SSL hostname verification for the support-agreement download (SEC-279).

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-347,

Products Affected

Vendor Product Version
cpanel cpanel *
CVE-2017-18408 LOW

cPanel before 67.9999.103 allows stored XSS in WHM MySQL Password Change interfaces (SEC-282).

CVSS 2.0

Severity: LOW

Problem Type: CWE-79,

Products Affected

Vendor Product Version
cpanel cpanel *
CVE-2017-18409 MEDIUM

In cPanel before 67.9999.103, the backup interface could return a backup archive with all MySQL databases (SEC-283).

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-20,

Products Affected

Vendor Product Version
cpanel cpanel *
CVE-2017-18410 MEDIUM

In cPanel before 67.9999.103, a user account's backup archive could contain all MySQL databases on the server (SEC-284).

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-20,

Products Affected

Vendor Product Version
cpanel cpanel *
CVE-2017-18411 MEDIUM

The "addon domain conversion" feature in cPanel before 67.9999.103 can copy all MySQL databases to the new account (SEC-285).

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-20,

Products Affected

Vendor Product Version
cpanel cpanel *
CVE-2017-18412 LOW

cPanel before 67.9999.103 allows Apache HTTP Server log files to become world-readable because of mishandling on an account rename (SEC-296).

CVSS 2.0

Severity: LOW

Problem Type: CWE-532,

Products Affected

Vendor Product Version
cpanel cpanel *
CVE-2017-18413 MEDIUM

In cPanel before 67.9999.103, the backup system overwrites root's home directory when a mount disappears (SEC-299).

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-264,

Products Affected

Vendor Product Version
cpanel cpanel *
CVE-2017-18414 MEDIUM

cPanel before 67.9999.103 allows an open redirect in /unprotected/redirect.html (SEC-300).

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-601,

Products Affected

Vendor Product Version
cpanel cpanel *
CVE-2017-18415 MEDIUM

cPanel before 67.9999.103 allows code execution in the context of the mailman account because of incorrect environment-variable filtering (SEC-302).

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-20,

Products Affected

Vendor Product Version
cpanel cpanel *
CVE-2017-18416 LOW

cPanel before 67.9999.103 allows arbitrary file-overwrite operations during a Roundcube SQLite schema update (SEC-303).

CVSS 2.0

Severity: LOW

Problem Type: CWE-284,

Products Affected

Vendor Product Version
cpanel cpanel *
CVE-2017-18417 LOW

cPanel before 66.0.2 allows stored XSS during WHM cPAddons installation (SEC-263).

CVSS 2.0

Severity: LOW

Problem Type: CWE-79,

Products Affected

Vendor Product Version
cpanel cpanel *
CVE-2017-18418 LOW

cPanel before 66.0.2 allows stored XSS during WHM cPAddons file operations (SEC-265).

CVSS 2.0

Severity: LOW

Problem Type: CWE-79,

Products Affected

Vendor Product Version
cpanel cpanel *
CVE-2017-18419 LOW

cPanel before 66.0.2 allows stored XSS during WHM cPAddons uninstallation (SEC-266).

CVSS 2.0

Severity: LOW

Problem Type: CWE-79,

Products Affected

Vendor Product Version
cpanel cpanel *
CVE-2017-18420 LOW

cPanel before 66.0.2 allows stored XSS during WHM cPAddons processing (SEC-269).

CVSS 2.0

Severity: LOW

Problem Type: CWE-79,

Products Affected

Vendor Product Version
cpanel cpanel *
CVE-2017-18421 LOW

cPanel before 66.0.2 allows demo accounts to create databases and users (SEC-271).

CVSS 2.0

Severity: LOW

Problem Type: CWE-284,

Products Affected

Vendor Product Version
cpanel cpanel *
CVE-2017-18422 LOW

In cPanel before 66.0.2, EasyApache 4 conversion sets weak domlog ownership and permissions (SEC-272).

CVSS 2.0

Severity: LOW

Problem Type: CWE-275,

Products Affected

Vendor Product Version
cpanel cpanel *
CVE-2017-18423 LOW

In cPanel before 66.0.2, domain log files become readable after log processing (SEC-273).

CVSS 2.0

Severity: LOW

Problem Type: CWE-532,

Products Affected

Vendor Product Version
cpanel cpanel *
CVE-2017-18424 LOW

In cPanel before 66.0.2, the Apache HTTP Server configuration file is changed to world-readable when rebuilt (SEC-274).

CVSS 2.0

Severity: LOW

Problem Type: CWE-200,

Products Affected

Vendor Product Version
cpanel cpanel *
CVE-2017-18425 LOW

In cPanel before 66.0.2, the cpdavd_error_log file can be created with weak permissions (SEC-280).

CVSS 2.0

Severity: LOW

Problem Type: CWE-275,

Products Affected

Vendor Product Version
cpanel cpanel *
CVE-2017-18426 MEDIUM

cPanel before 66.0.2 allows resellers to read other accounts' domain log files (SEC-288).

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-532,

Products Affected

Vendor Product Version
cpanel cpanel *
CVE-2017-18427 LOW

In cPanel before 66.0.2, weak log-file permissions can occur after account modification (SEC-289).

CVSS 2.0

Severity: LOW

Problem Type: CWE-275,

Products Affected

Vendor Product Version
cpanel cpanel *
CVE-2017-18428 LOW

In cPanel before 66.0.2, Apache HTTP Server domlogs become temporarily world-readable during log processing (SEC-290).

CVSS 2.0

Severity: LOW

Problem Type: CWE-200,

Products Affected

Vendor Product Version
cpanel cpanel *
CVE-2017-18429 LOW

In cPanel before 66.0.2, Apache HTTP Server SSL domain logs can persist on disk after an account termination (SEC-291).

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 3.3 LOW CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N 1.8 1.4

CVSS 2.0

Severity: LOW

Problem Type: CWE-254,

Products Affected

Vendor Product Version
cpanel cpanel *
CVE-2017-18430 MEDIUM

In cPanel before 66.0.2, user and group ownership may be incorrectly set when using reassign_post_terminate_cruft (SEC-294).

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-20,

Products Affected

Vendor Product Version
cpanel cpanel *
CVE-2017-18431 MEDIUM

cPanel before 66.0.1 does not reliably perform suspend/unsuspend operations on accounts (CPANEL-13941).

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-20,

Products Affected

Vendor Product Version
cpanel cpanel *
CVE-2017-18432 LOW

In cPanel before 64.0.21, Horde MySQL to SQLite conversion can leak a database password (SEC-234).

CVSS 2.0

Severity: LOW

Problem Type: CWE-200,

Products Affected

Vendor Product Version
cpanel cpanel *
CVE-2017-18433 HIGH

cPanel before 64.0.21 allows code execution by webmail and demo accounts via a store_filter API call (SEC-236).

CVSS 2.0

Severity: HIGH

Problem Type: CWE-20,

Products Affected

Vendor Product Version
cpanel cpanel *
CVE-2017-18434 HIGH

cPanel before 64.0.21 allows code execution in the context of the root account via a SET_VHOST_LANG_PACKAGE multilang adminbin call (SEC-237).

CVSS 2.0

Severity: HIGH

Problem Type: CWE-20,

Products Affected

Vendor Product Version
cpanel cpanel *
CVE-2017-18435 HIGH

cPanel before 64.0.21 allows demo accounts to execute code via the BoxTrapper API (SEC-238).

CVSS 2.0

Severity: HIGH

Problem Type: CWE-434,

Products Affected

Vendor Product Version
cpanel cpanel *
CVE-2017-18436 LOW

cPanel before 64.0.21 allows demo accounts to read files via a Fileman::getfileactions API2 call (SEC-239).

CVSS 2.0

Severity: LOW

Problem Type: CWE-200,

Products Affected

Vendor Product Version
cpanel cpanel *
CVE-2017-18437 LOW

cPanel before 64.0.21 allows a Webmail account to execute code via forwarders (SEC-240).

CVSS 2.0

Severity: LOW

Problem Type: CWE-74,

Products Affected

Vendor Product Version
cpanel cpanel *
CVE-2017-18438 MEDIUM

cPanel before 64.0.21 allows demo accounts to execute code via Encoding API calls (SEC-242).

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-611,

Products Affected

Vendor Product Version
cpanel cpanel *
CVE-2017-18439 MEDIUM

cPanel before 64.0.21 allows demo accounts to execute code via an ImageManager_dimensions API call (SEC-243).

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-20,

Products Affected

Vendor Product Version
cpanel cpanel *
CVE-2017-18440 MEDIUM

cPanel before 64.0.21 allows demo users to execute traceroute via api2 (SEC-244).

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-20,

Products Affected

Vendor Product Version
cpanel cpanel *
CVE-2017-18441 MEDIUM

cPanel before 64.0.21 allows demo accounts to redirect web traffic (SEC-245).

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-601,

Products Affected

Vendor Product Version
cpanel cpanel *
CVE-2017-18442 MEDIUM

cPanel before 64.0.21 allows demo accounts to execute Cpanel::SPFUI API commands (SEC-246).

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-77,

Products Affected

Vendor Product Version
cpanel cpanel *
CVE-2017-18443 MEDIUM

cPanel before 64.0.21 allows demo and suspended accounts to use SSH port forwarding (SEC-247).

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-20,

Products Affected

Vendor Product Version
cpanel cpanel *
CVE-2017-18444 MEDIUM

cPanel before 64.0.21 allows demo accounts to execute SSH API commands (SEC-248).

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-20,

Products Affected

Vendor Product Version
cpanel cpanel *
CVE-2017-18445 MEDIUM

cPanel before 64.0.21 does not enforce demo restrictions for SSL API calls (SEC-249).

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-254,

Products Affected

Vendor Product Version
cpanel cpanel *
CVE-2017-18446 MEDIUM

cPanel before 64.0.21 allows file-read and file-write operations for demo accounts via the SourceIPCheck API (SEC-250).

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-125,CWE-787,

Products Affected

Vendor Product Version
cpanel cpanel *
CVE-2017-18447 MEDIUM

cPanel before 64.0.21 allows demo accounts to execute code via the ClamScanner_getsocket API (SEC-251).

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-20,

Products Affected

Vendor Product Version
cpanel cpanel *
CVE-2017-18448 MEDIUM

cPanel before 64.0.21 allows certain file-read operations via a Serverinfo_manpage API call (SEC-252).

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-22,

Products Affected

Vendor Product Version
cpanel cpanel *
CVE-2017-18449 LOW

cPanel before 64.0.21 allows certain file-rename operations in the context of the root account via scripts/convert_roundcube_mysql2sqlite (SEC-254).

CVSS 2.0

Severity: LOW

Problem Type: CWE-20,

Products Affected

Vendor Product Version
cpanel cpanel *
CVE-2017-18450 MEDIUM

cPanel before 64.0.21 allows certain file-chmod operations via /scripts/convert_roundcube_mysql2sqlite (SEC-255).

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-264,

Products Affected

Vendor Product Version
cpanel cpanel *
CVE-2017-18451 MEDIUM

cPanel before 64.0.21 allows attackers to read a user's crontab file during a short time interval upon a cPAddon upgrade (SEC-257).

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-264,

Products Affected

Vendor Product Version
cpanel cpanel *
CVE-2017-18452 MEDIUM

cPanel before 64.0.21 allows code execution via Rails configuration files (SEC-259).

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-20,

Products Affected

Vendor Product Version
cpanel cpanel *
CVE-2017-18453 MEDIUM

cPanel before 64.0.21 does not preserve supplemental groups across account renames (SEC-260).

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-20,

Products Affected

Vendor Product Version
cpanel cpanel *
CVE-2017-18454 LOW

cPanel before 62.0.24 allows stored XSS in the WHM cPAddons install interface (SEC-262).

CVSS 2.0

Severity: LOW

Problem Type: CWE-79,

Products Affected

Vendor Product Version
cpanel cpanel *
CVE-2017-18455 MEDIUM

In cPanel before 62.0.17, addon domain conversion did not require a package for resellers (SEC-208).

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-264,

Products Affected

Vendor Product Version
cpanel cpanel *
CVE-2017-18456 MEDIUM

cPanel before 62.0.17 allows self XSS in the WHM cPAddons showsecurity interface (SEC-217).

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-79,

Products Affected

Vendor Product Version
cpanel cpanel *
CVE-2017-18457 MEDIUM

cPanel before 62.0.17 allows arbitrary file-read operations via WHM /styled/ URLs (SEC-218).

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-284,

Products Affected

Vendor Product Version
cpanel cpanel *
CVE-2017-18458 LOW

cPanel before 62.0.17 allows file overwrite when renaming an account (SEC-219).

CVSS 2.0

Severity: LOW

Problem Type: CWE-20,

Products Affected

Vendor Product Version
cpanel cpanel *
CVE-2017-18459 HIGH

cPanel before 62.0.17 allows arbitrary code execution during account modification (SEC-220).

CVSS 2.0

Severity: HIGH

Problem Type: CWE-20,

Products Affected

Vendor Product Version
cpanel cpanel *
CVE-2017-18460 HIGH

cPanel before 62.0.17 allows arbitrary code execution during automatic SSL installation (SEC-221).

CVSS 2.0

Severity: HIGH

Problem Type: CWE-20,

Products Affected

Vendor Product Version
cpanel cpanel *
CVE-2017-18461 MEDIUM

cPanel before 62.0.17 allows does not preserve security policy questions across an account rename (SEC-223).

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-20,

Products Affected

Vendor Product Version
cpanel cpanel *
CVE-2017-18462 MEDIUM

cPanel before 62.0.17 allows a CPHulk one-day ban bypass when IP based protection is enabled (SEC-224).

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-254,

Products Affected

Vendor Product Version
cpanel cpanel *
CVE-2017-18463 HIGH

cPanel before 62.0.17 allows code execution in the context of the root account via a long DocumentRoot path (SEC-225).

CVSS 2.0

Severity: HIGH

Problem Type: CWE-20,

Products Affected

Vendor Product Version
cpanel cpanel *
CVE-2017-18464 MEDIUM

cPanel before 62.0.17 allows arbitrary file-overwrite operations via the WHM Zone Template editor (SEC-226).

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-20,

Products Affected

Vendor Product Version
cpanel cpanel *
CVE-2017-18465 LOW

cPanel before 62.0.17 does not have a sufficient list of reserved usernames (SEC-227).

CVSS 2.0

Severity: LOW

Problem Type: CWE-20,

Products Affected

Vendor Product Version
cpanel cpanel *
CVE-2017-18466 MEDIUM

cPanel before 62.0.17 does not properly recognize domain ownership during addition of parked domains to a mail configuration (SEC-228).

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-20,

Products Affected

Vendor Product Version
cpanel cpanel *
CVE-2017-18467 MEDIUM

cPanel before 62.0.17 allows access to restricted resources because of a URL filtering error (SEC-229).

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-254,

Products Affected

Vendor Product Version
cpanel cpanel *
CVE-2017-18468 MEDIUM

cPanel before 62.0.17 allows demo accounts to execute code via the Htaccess::setphppreference API (SEC-232).

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-94,

Products Affected

Vendor Product Version
cpanel cpanel *
CVE-2017-18469 MEDIUM

cPanel before 62.0.17 allows demo accounts to execute code via an NVData_fetchinc API call (SEC-233).

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-20,

Products Affected

Vendor Product Version
cpanel cpanel *
CVE-2017-18470 MEDIUM

cPanel before 62.0.4 has a fixed password for the Munin MySQL test account (SEC-196).

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-255,

Products Affected

Vendor Product Version
cpanel cpanel *
CVE-2017-18471 LOW

cPanel before 62.0.4 allows self XSS on the paper_lantern password-change screen (SEC-197).

CVSS 2.0

Severity: LOW

Problem Type: CWE-79,

Products Affected

Vendor Product Version
cpanel cpanel *
CVE-2017-18472 MEDIUM

cPanel before 62.0.4 allows reflected XSS in reset-password interfaces (SEC-198).

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-79,

Products Affected

Vendor Product Version
cpanel cpanel *
CVE-2017-18473 LOW

cPanel before 62.0.4 allows self XSS on the webmail Password and Security page (SEC-199).

CVSS 2.0

Severity: LOW

Problem Type: CWE-79,

Products Affected

Vendor Product Version
cpanel cpanel *
CVE-2017-18474 MEDIUM

cPanel before 62.0.4 allows arbitrary file-read operations via Exim valiases (SEC-201).

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-200,

Products Affected

Vendor Product Version
cpanel cpanel *
CVE-2017-18475 MEDIUM

In cPanel before 62.0.4, Exim piped filters ran in the context of an incorrect user account when delivering to a system user (SEC-204).

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-20,

Products Affected

Vendor Product Version
cpanel cpanel *
CVE-2017-18476 MEDIUM

Leech Protect in cPanel before 62.0.4 does not protect certain directories (SEC-205).

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-254,

Products Affected

Vendor Product Version
cpanel cpanel *
CVE-2017-18477 MEDIUM

In cPanel before 62.0.4, Exim transports could execute in the context of the nobody account (SEC-206).

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-254,

Products Affected

Vendor Product Version
cpanel cpanel *
CVE-2017-18478 MEDIUM

In cPanel before 62.0.4 incorrect ACL checks could occur in xml-api for Rearrange Account actions (SEC-207).

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-200,

Products Affected

Vendor Product Version
cpanel cpanel *
CVE-2017-18479 MEDIUM

In cPanel before 62.0.4, WHM SSL certificate generation uses an unreserved e-mail address (SEC-209).

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-295,

Products Affected

Vendor Product Version
cpanel cpanel *
CVE-2017-18480 MEDIUM

cPanel before 62.0.4 does not enforce account ownership for has_mycnf_for_cpuser WHM API calls (SEC-210).

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-254,

Products Affected

Vendor Product Version
cpanel cpanel *
CVE-2017-18481 LOW

cPanel before 62.0.4 allows stored XSS in the WHM Account Suspension List interface (SEC-211).

CVSS 2.0

Severity: LOW

Problem Type: CWE-79,

Products Affected

Vendor Product Version
cpanel cpanel *
CVE-2017-18482 MEDIUM

cPanel before 62.0.4 allows resellers to use the WHM enqueue_transfer_item API for queueing non-rearrange modules (SEC-213).

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-20,

Products Affected

Vendor Product Version
cpanel cpanel *
CVE-2017-5613 MEDIUM

Format string vulnerability in cgiemail and cgiecho allows remote attackers to execute arbitrary code via format string specifiers in a template file.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-134,

Products Affected

Vendor Product Version
cpanel cgiecho -
cpanel cgiemail -
CVE-2017-5614 MEDIUM

Open redirect vulnerability in cgiemail and cgiecho allows remote attackers to redirect users to arbitrary web sites and conduct phishing attacks via vectors involving the (1) success or (2) failure parameter.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 6.1 MEDIUM CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N 2.8 2.7

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-601,

Products Affected

Vendor Product Version
cpanel cpanel *
CVE-2017-5615 MEDIUM

cgiemail and cgiecho allow remote attackers to inject HTTP headers via a newline character in the redirect location.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-601,

Products Affected

Vendor Product Version
cpanel cgiecho -
cpanel cgiemail -
CVE-2017-5616 MEDIUM

Cross-site scripting (XSS) vulnerability in cgiemail and cgiecho allows remote attackers to inject arbitrary web script or HTML via the addendum parameter.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-79,

Products Affected

Vendor Product Version
cpanel cgiecho -
cpanel cgiemail -
CVE-2018-16236 MEDIUM

cPanel through 74 allows XSS via a crafted filename in the logs subdirectory of a user account, because the filename is mishandled during frontend/THEME/raw/index.html rendering.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-79,

Products Affected

Vendor Product Version
cpanel cpanel *
CVE-2018-20862 LOW

cPanel before 76.0.8 unsafely performs PostgreSQL password changes (SEC-366).

CVSS 2.0

Severity: LOW

Problem Type: NVD-CWE-noinfo,

Products Affected

Vendor Product Version
cpanel cpanel *
CVE-2018-20863 HIGH

cPanel before 76.0.8 allows remote attackers to execute arbitrary code via mailing-list attachments (SEC-452).

CVSS 2.0

Severity: HIGH

Problem Type: CWE-20,

Products Affected

Vendor Product Version
cpanel cpanel *
CVE-2018-20864 MEDIUM

cPanel before 76.0.8 allows a persistent Virtual FTP accounts after removal of its associated domain (SEC-454).

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-20,

Products Affected

Vendor Product Version
cpanel cpanel *
CVE-2018-20865 MEDIUM

cPanel before 76.0.8 has Self XSS in the WHM Additional Backup Destination field (SEC-459).

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-79,

Products Affected

Vendor Product Version
cpanel cpanel *
CVE-2018-20866 MEDIUM

cPanel before 76.0.8 has Stored XSS in the WHM "Reset a DNS Zone" feature (SEC-461).

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-79,

Products Affected

Vendor Product Version
cpanel cpanel *
CVE-2018-20867 MEDIUM

cPanel before 76.0.8 has an open redirect when resetting connections (SEC-462).

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-601,

Products Affected

Vendor Product Version
cpanel cpanel *
CVE-2018-20868 MEDIUM

cPanel before 76.0.8 has Stored XSS in the WHM MultiPHP Manager interface (SEC-464).

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-79,

Products Affected

Vendor Product Version
cpanel cpanel *
CVE-2018-20869 HIGH

cPanel before 76.0.8 allows arbitrary code execution in the context of the root account via dnssec adminbin (SEC-465).

CVSS 2.0

Severity: HIGH

Problem Type: CWE-20,

Products Affected

Vendor Product Version
cpanel cpanel *
CVE-2018-20870 LOW

The WebDAV transport feature in cPanel before 76.0.8 enables debug logging (SEC-467).

CVSS 2.0

Severity: LOW

Problem Type: CWE-200,

Products Affected

Vendor Product Version
cpanel cpanel *
CVE-2018-20873 LOW

cPanel before 74.0.8 allows local users to disable the ClamAV daemon (SEC-409).

CVSS 2.0

Severity: LOW

Problem Type: CWE-20,

Products Affected

Vendor Product Version
cpanel cpanel *
CVE-2018-20874 LOW

cPanel before 74.0.8 allows self XSS in the WHM "Create a New Account" interface (SEC-428).

CVSS 2.0

Severity: LOW

Problem Type: CWE-79,

Products Affected

Vendor Product Version
cpanel cpanel *
CVE-2018-20875 LOW

cPanel before 74.0.8 allows self XSS in the WHM Security Questions interface (SEC-433).

CVSS 2.0

Severity: LOW

Problem Type: CWE-79,

Products Affected

Vendor Product Version
cpanel cpanel *
CVE-2018-20876 LOW

cPanel before 74.0.8 allows self XSS in the Site Software Moderation interface (SEC-434).

CVSS 2.0

Severity: LOW

Problem Type: CWE-79,

Products Affected

Vendor Product Version
cpanel cpanel *
CVE-2018-20877 LOW

cPanel before 74.0.8 allows self XSS in WHM Style Upload interface (SEC-437).

CVSS 2.0

Severity: LOW

Problem Type: CWE-79,

Products Affected

Vendor Product Version
cpanel cpanel *
CVE-2018-20878 LOW

cPanel before 74.0.8 allows stored XSS in WHM "File and Directory Restoration" interface (SEC-441).

CVSS 2.0

Severity: LOW

Problem Type: CWE-79,

Products Affected

Vendor Product Version
cpanel cpanel *
CVE-2018-20879 MEDIUM

cPanel before 74.0.8 allows demo accounts to execute arbitrary code via the Fileman::viewfile API (SEC-444).

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-20,

Products Affected

Vendor Product Version
cpanel cpanel *
CVE-2018-20880 LOW

cPanel before 74.0.8 mishandles account suspension because of an invalid email_accounts.json file (SEC-445).

CVSS 2.0

Severity: LOW

Problem Type: NVD-CWE-noinfo,

Products Affected

Vendor Product Version
cpanel cpanel *
CVE-2018-20881 LOW

cPanel before 74.0.8 allows self stored XSS on the Security Questions login page (SEC-446).

CVSS 2.0

Severity: LOW

Problem Type: CWE-79,

Products Affected

Vendor Product Version
cpanel cpanel *
CVE-2018-20882 MEDIUM

cPanel before 74.0.8 allows arbitrary file-write operations in the context of the root account during WHM Force Password Change (SEC-447).

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-20,

Products Affected

Vendor Product Version
cpanel cpanel *
CVE-2018-20883 MEDIUM

cPanel before 74.0.8 allows FTP access during account suspension (SEC-449).

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-20,

Products Affected

Vendor Product Version
cpanel cpanel *
CVE-2018-20884 LOW

cPanel before 74.0.0 allows stored XSS in the WHM File Restoration interface (SEC-367).

CVSS 2.0

Severity: LOW

Problem Type: CWE-79,

Products Affected

Vendor Product Version
cpanel cpanel *
CVE-2018-20885 MEDIUM

cPanel before 74.0.0 allows Apache HTTP Server configuration injection because of DocumentRoot variable interpolation (SEC-416).

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-74,

Products Affected

Vendor Product Version
cpanel cpanel *
CVE-2018-20886 MEDIUM

cPanel before 74.0.0 insecurely stores phpMyAdmin session files (SEC-418).

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-922,

Products Affected

Vendor Product Version
cpanel cpanel *
CVE-2018-20887 HIGH

cPanel before 74.0.0 allows SQL injection during database backups (SEC-420).

CVSS 2.0

Severity: HIGH

Problem Type: CWE-89,

Products Affected

Vendor Product Version
cpanel cpanel *
CVE-2018-20888 MEDIUM

cPanel before 74.0.0 allows file modification in the context of the root account because of incorrect HTTP authentication (SEC-424).

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-287,

Products Affected

Vendor Product Version
cpanel cpanel *
CVE-2018-20889 LOW

cPanel before 74.0.0 allows certain file-read operations via password file caching (SEC-425).

CVSS 2.0

Severity: LOW

Problem Type: CWE-200,

Products Affected

Vendor Product Version
cpanel cpanel *
CVE-2018-20890 MEDIUM

cPanel before 74.0.0 allows arbitrary zone file modifications during record edits (SEC-426).

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-284,

Products Affected

Vendor Product Version
cpanel cpanel *
CVE-2018-20891 MEDIUM

cPanel before 74.0.0 allows arbitrary file-read operations during File Restoration (SEC-436).

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-20,

Products Affected

Vendor Product Version
cpanel cpanel *
CVE-2018-20892 MEDIUM

cPanel before 74.0.0 allows arbitrary zone file modifications because of incorrect CAA record handling (SEC-439).

CVSS 2.0

Severity: MEDIUM

Problem Type: NVD-CWE-noinfo,

Products Affected

Vendor Product Version
cpanel cpanel *
CVE-2018-20893 LOW

cPanel before 74.0.0 allows file-rename operations during account renames (SEC-442).

CVSS 2.0

Severity: LOW

Problem Type: CWE-20,

Products Affected

Vendor Product Version
cpanel cpanel *
CVE-2018-20894 LOW

cPanel before 74.0.0 makes web-site contents accessible to other local users via Git repositories (SEC-443).

CVSS 2.0

Severity: LOW

Problem Type: CWE-200,

Products Affected

Vendor Product Version
cpanel cpanel *
CVE-2018-20895 MEDIUM

In cPanel before 71.9980.37, API tokens retain ACLs after those ACLs are removed from the corresponding accounts (SEC-393).

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-20,

Products Affected

Vendor Product Version
cpanel cpanel *
CVE-2018-20896 LOW

cPanel before 71.9980.37 allows code injection in the WHM cPAddons interface (SEC-394).

CVSS 2.0

Severity: LOW

Problem Type: CWE-94,

Products Affected

Vendor Product Version
cpanel cpanel *
CVE-2018-20897 LOW

cPanel before 71.9980.37 allows arbitrary file-unlink operations via the cPAddons moderation system (SEC-395).

CVSS 2.0

Severity: LOW

Problem Type: CWE-20,

Products Affected

Vendor Product Version
cpanel cpanel *
CVE-2018-20898 MEDIUM

cPanel before 71.9980.37 allows e-mail injection during cPAddons moderation (SEC-396).

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-74,

Products Affected

Vendor Product Version
cpanel cpanel *
CVE-2018-20899 MEDIUM

cPanel before 71.9980.37 allows stored XSS in the WHM cPAddons installation interface (SEC-398).

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-79,

Products Affected

Vendor Product Version
cpanel cpanel *
CVE-2018-20900 MEDIUM

cPanel before 71.9980.37 allows stored XSS in the YUM autorepair functionality (SEC-399).

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-79,

Products Affected

Vendor Product Version
cpanel cpanel *
CVE-2018-20901 MEDIUM

cPanel before 71.9980.37 allows Remote-Stored XSS in WHM Save Theme Interface (SEC-400).

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-79,

Products Affected

Vendor Product Version
cpanel cpanel *
CVE-2018-20902 LOW

cPanel before 71.9980.37 allows attackers to read root's crontab file by leveraging ClamAV installation (SEC-408).

CVSS 2.0

Severity: LOW

Problem Type: CWE-200,

Products Affected

Vendor Product Version
cpanel cpanel *
CVE-2018-20903 MEDIUM

cPanel before 71.9980.37 allows self XSS in the WHM Backup Configuration interface (SEC-421).

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-79,

Products Affected

Vendor Product Version
cpanel cpanel *
CVE-2018-20904 MEDIUM

cPanel before 71.9980.37 allows attackers to make API calls that bypass the cron feature restriction (SEC-427).

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-732,

Products Affected

Vendor Product Version
cpanel cpanel *
CVE-2018-20905 MEDIUM

cPanel before 71.9980.37 allows attackers to make API calls that bypass the backup feature restriction (SEC-429).

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-732,

Products Affected

Vendor Product Version
cpanel cpanel *
CVE-2018-20906 MEDIUM

cPanel before 71.9980.37 allows attackers to make API calls that bypass the images feature restriction (SEC-430).

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-732,

Products Affected

Vendor Product Version
cpanel cpanel *
CVE-2018-20907 MEDIUM

cPanel before 71.9980.37 does not enforce the Mime::list_hotlinks API feature restriction (SEC-432).

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-732,

Products Affected

Vendor Product Version
cpanel cpanel *
CVE-2018-20908 LOW

cPanel before 71.9980.37 allows arbitrary file-read operations during pkgacct custom template handling (SEC-435).

CVSS 2.0

Severity: LOW

Problem Type: CWE-732,

Products Affected

Vendor Product Version
cpanel cpanel *
CVE-2018-20909 LOW

cPanel before 70.0.23 allows arbitrary file-chmod operations during legacy incremental backups (SEC-338).

CVSS 2.0

Severity: LOW

Problem Type: CWE-732,

Products Affected

Vendor Product Version
cpanel cpanel *
CVE-2018-20910 MEDIUM

cPanel before 70.0.23 allows self XSS in the WHM cPAddons showsecurity Interface (SEC-357).

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-79,

Products Affected

Vendor Product Version
cpanel cpanel *
CVE-2018-20911 MEDIUM

cPanel before 70.0.23 allows code execution because "." is in @INC during a Perl syntax check of cpaddonsup (SEC-359).

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-79,

Products Affected

Vendor Product Version
cpanel cpanel *
CVE-2018-20912 MEDIUM

cPanel before 70.0.23 allows demo accounts to execute code via awstats (SEC-362).

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-20,

Products Affected

Vendor Product Version
cpanel cpanel *
CVE-2018-20913 LOW

cPanel before 70.0.23 allows attackers to read the root accesshash via the WHM /cgi/trustclustermaster.cgi (SEC-364).

CVSS 2.0

Severity: LOW

Problem Type: CWE-200,

Products Affected

Vendor Product Version
cpanel cpanel *
CVE-2018-20914 MEDIUM

In cPanel before 70.0.23, OpenID providers can inject arbitrary data into cPanel session files (SEC-368).

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-74,

Products Affected

Vendor Product Version
cpanel cpanel *
CVE-2018-20915 LOW

cPanel before 70.0.23 allows stored XSS via a WHM Edit DNS Zone action (SEC-369).

CVSS 2.0

Severity: LOW

Problem Type: CWE-79,

Products Affected

Vendor Product Version
cpanel cpanel *
CVE-2018-20916 LOW

cPanel before 70.0.23 allows Stored XSS via a WHM Edit MX Entry (SEC-370).

CVSS 2.0

Severity: LOW

Problem Type: CWE-79,

Products Affected

Vendor Product Version
cpanel cpanel *
CVE-2018-20917 LOW

cPanel before 70.0.23 allows any user to disable Solr (SEC-371).

CVSS 2.0

Severity: LOW

Problem Type: CWE-20,

Products Affected

Vendor Product Version
cpanel cpanel *
CVE-2018-20918 MEDIUM

cPanel before 70.0.23 allows stored XSS in WHM DNS Cluster (SEC-372).

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-79,

Products Affected

Vendor Product Version
cpanel cpanel *
CVE-2018-20919 MEDIUM

cPanel before 70.0.23 allows stored XSS via a WHM Create Account action (SEC-373).

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-79,

Products Affected

Vendor Product Version
cpanel cpanel *
CVE-2018-20920 MEDIUM

cPanel before 70.0.23 allows stored XSS via a WHM Edit DNS Zone action (SEC-374).

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-79,

Products Affected

Vendor Product Version
cpanel cpanel *
CVE-2018-20921 MEDIUM

cPanel before 70.0.23 allows stored XSS via a WHM "Delete a DNS Zone" action (SEC-375).

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-79,

Products Affected

Vendor Product Version
cpanel cpanel *
CVE-2018-20922 MEDIUM

cPanel before 70.0.23 allows stored XSS via a WHM DNS Cleanup action (SEC-376).

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-79,

Products Affected

Vendor Product Version
cpanel cpanel *
CVE-2018-20923 MEDIUM

cPanel before 70.0.23 allows stored XSS via a WHM Synchronize DNS Records action (SEC-377).

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-79,

Products Affected

Vendor Product Version
cpanel cpanel *
CVE-2018-20924 HIGH

cPanel before 70.0.23 allows arbitrary file-read and file-unlink operations via WHM style uploads (SEC-378).

CVSS 2.0

Severity: HIGH

Problem Type: CWE-287,

Products Affected

Vendor Product Version
cpanel cpanel *
CVE-2018-20925 MEDIUM

cPanel before 70.0.23 allows local privilege escalation via the WHM Legacy Language File Upload interface (SEC-379).

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-434,

Products Affected

Vendor Product Version
cpanel cpanel *
CVE-2018-20926 HIGH

cPanel before 70.0.23 allows local privilege escalation via the WHM Locale XML Upload interface (SEC-380).

CVSS 2.0

Severity: HIGH

Problem Type: CWE-434,

Products Affected

Vendor Product Version
cpanel cpanel *
CVE-2018-20927 LOW

cPanel before 70.0.23 allows jailshell escape because of incorrect crontab parsing (SEC-382).

CVSS 2.0

Severity: LOW

Problem Type: CWE-285,

Products Affected

Vendor Product Version
cpanel cpanel *
CVE-2018-20928 MEDIUM

cPanel before 70.0.23 allows stored XSS via the cpaddons vendor interface (SEC-391).

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-79,

Products Affected

Vendor Product Version
cpanel cpanel *
CVE-2018-20929 MEDIUM

cPanel before 70.0.23 allows an open redirect via the /unprotected/redirect.html endpoint (SEC-392).

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-601,

Products Affected

Vendor Product Version
cpanel cpanel *
CVE-2018-20930 MEDIUM

cPanel before 70.0.23 allows .htaccess restrictions bypass when Htaccess Optimization is enabled (SEC-401).

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-284,

Products Affected

Vendor Product Version
cpanel cpanel *
CVE-2018-20931 MEDIUM

cPanel before 70.0.23 allows demo accounts to execute code via the Landing Page (SEC-405).

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-94,

Products Affected

Vendor Product Version
cpanel cpanel *
CVE-2018-20932 MEDIUM

cPanel before 70.0.23 exposes Apache HTTP Server logs after creation of certain domains (SEC-406).

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-538,

Products Affected

Vendor Product Version
cpanel cpanel *
CVE-2018-20933 LOW

cPanel before 70.0.23 has Stored XSS via an WHM Edit DNS Zone action (SEC-410).

CVSS 2.0

Severity: LOW

Problem Type: CWE-79,

Products Affected

Vendor Product Version
cpanel cpanel *
CVE-2018-20934 MEDIUM

cPanel before 70.0.23 does not prevent e-mail account suspensions from being applied to unowned accounts (SEC-411).

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-358,

Products Affected

Vendor Product Version
cpanel cpanel *
CVE-2018-20935 LOW

cPanel before 70.0.23 allows stored XSS in via a WHM "Reset a DNS Zone" action (SEC-412).

CVSS 2.0

Severity: LOW

Problem Type: CWE-79,

Products Affected

Vendor Product Version
cpanel cpanel *
CVE-2018-20936 LOW

cPanel before 68.0.27 allows attackers to read the SRS secret via exim.conf (SEC-308).

CVSS 2.0

Severity: LOW

Problem Type: CWE-732,

Products Affected

Vendor Product Version
cpanel cpanel *
CVE-2018-20937 MEDIUM

cPanel before 68.0.27 does not validate database and dbuser names during renames (SEC-321).

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-287,

Products Affected

Vendor Product Version
cpanel cpanel *
CVE-2018-20938 MEDIUM

cPanel before 68.0.27 does not enforce ownership during addpkgext and delpkgext WHM API calls (SEC-324).

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-284,

Products Affected

Vendor Product Version
cpanel cpanel *
CVE-2018-20939 LOW

cPanel before 68.0.27 allows a user to discover contents of directories (that are not owned by that user) by leveraging backups (SEC-339).

CVSS 2.0

Severity: LOW

Problem Type: CWE-200,

Products Affected

Vendor Product Version
cpanel cpanel *
CVE-2018-20940 LOW

cPanel before 68.0.27 allows attackers to read root's crontab file during a short time interval upon the enabling of backups (SEC-342).

CVSS 2.0

Severity: LOW

Problem Type: CWE-362,

Products Affected

Vendor Product Version
cpanel cpanel *
CVE-2018-20941 MEDIUM

cPanel before 68.0.27 allows arbitrary file-read operations via restore adminbin (SEC-349).

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-200,

Products Affected

Vendor Product Version
cpanel cpanel *
CVE-2018-20942 LOW

cPanel before 68.0.27 allows attackers to read root's crontab file during a short time interval upon configuring crontab (SEC-351).

CVSS 2.0

Severity: LOW

Problem Type: CWE-200,

Products Affected

Vendor Product Version
cpanel cpanel *
CVE-2018-20943 LOW

cPanel before 68.0.27 allows attackers to read root's crontab file during a short time interval upon a post-update task (SEC-352).

CVSS 2.0

Severity: LOW

Problem Type: CWE-200,

Products Affected

Vendor Product Version
cpanel cpanel *
CVE-2018-20944 LOW

cPanel before 68.0.27 allows attackers to read a copy of httpd.conf that is created during a syntax test (SEC-353).

CVSS 2.0

Severity: LOW

Problem Type: CWE-200,

Products Affected

Vendor Product Version
cpanel cpanel *
CVE-2018-20945 HIGH

bin/csvprocess in cPanel before 68.0.27 allows insecure file operations (SEC-354).

CVSS 2.0

Severity: HIGH

Problem Type: CWE-285,

Products Affected

Vendor Product Version
cpanel cpanel *
CVE-2018-20946 LOW

cPanel before 68.0.27 allows attackers to read zone information because a world-readable archive is created by the archive_sync_zones script (SEC-355).

CVSS 2.0

Severity: LOW

Problem Type: CWE-200,

Products Affected

Vendor Product Version
cpanel cpanel *
CVE-2018-20947 LOW

cPanel before 68.0.27 allows certain file-write operations via the telnetcrt script (SEC-356).

CVSS 2.0

Severity: LOW

Problem Type: CWE-668,

Products Affected

Vendor Product Version
cpanel cpanel *
CVE-2018-20948 MEDIUM

cPanel before 68.0.27 allows self XSS in cPanel Backup Restoration (SEC-383).

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-79,

Products Affected

Vendor Product Version
cpanel cpanel *
CVE-2018-20949 MEDIUM

cPanel before 68.0.27 allows self XSS in WHM Apache Configuration Include Editor (SEC-385).

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-79,

Products Affected

Vendor Product Version
cpanel cpanel *
CVE-2018-20950 MEDIUM

cPanel before 68.0.27 allows self stored XSS in WHM Account Transfer (SEC-386).

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-79,

Products Affected

Vendor Product Version
cpanel cpanel *
CVE-2018-20951 MEDIUM

cPanel before 68.0.27 allows self XSS in WHM Spamd Startup Config (SEC-387).

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-79,

Products Affected

Vendor Product Version
cpanel cpanel *
CVE-2018-20952 MEDIUM

cPanel before 68.0.27 creates world-readable files during use of WHM Apache Includes Editor (SEC-388).

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-200,

Products Affected

Vendor Product Version
cpanel cpanel *
CVE-2018-20953 MEDIUM

cPanel before 68.0.27 allows self XSS in the WHM listips interface (SEC-389).

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-79,

Products Affected

Vendor Product Version
cpanel cpanel *
CVE-2019-14386 LOW

cPanel before 82.0.2 has stored XSS in the WHM Tomcat Manager interface (SEC-504).

CVSS 2.0

Severity: LOW

Problem Type: CWE-79,

Products Affected

Vendor Product Version
cpanel cpanel *
CVE-2019-14387 MEDIUM

cPanel before 82.0.2 has Self XSS in the cPanel and webmail master templates (SEC-506).

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-79,

Products Affected

Vendor Product Version
cpanel cpanel *
CVE-2019-14388 MEDIUM

cPanel before 82.0.2 allows unauthenticated file creation because Exim log parsing is mishandled (SEC-507).

CVSS 2.0

Severity: MEDIUM

Problem Type: NVD-CWE-noinfo,

Products Affected

Vendor Product Version
cpanel cpanel *
CVE-2019-14389 LOW

cPanel before 82.0.2 allows local users to discover the MySQL root password (SEC-510).

CVSS 2.0

Severity: LOW

Problem Type: NVD-CWE-noinfo,

Products Affected

Vendor Product Version
cpanel cpanel *
CVE-2019-14390 LOW

cPanel before 82.0.2 has stored XSS in the WHM Modify Account interface (SEC-512).

CVSS 2.0

Severity: LOW

Problem Type: CWE-79,

Products Affected

Vendor Product Version
cpanel cpanel *
CVE-2019-14391 LOW

cPanel before 82.0.2 does not properly enforce Reseller package creation ACLs (SEC-514).

CVSS 2.0

Severity: LOW

Problem Type: NVD-CWE-noinfo,

Products Affected

Vendor Product Version
cpanel cpanel *
CVE-2019-14392 MEDIUM

cPanel before 80.0.22 allows remote code execution by a demo account because of incorrect URI dispatching (SEC-501).

CVSS 2.0

Severity: MEDIUM

Problem Type: NVD-CWE-noinfo,

Products Affected

Vendor Product Version
cpanel cpanel *
CVE-2019-14393 MEDIUM

cPanel before 80.0.5 allows local code execution in the context of a different cPanel account because of insecure cpphp execution (SEC-486).

CVSS 2.0

Severity: MEDIUM

Problem Type: NVD-CWE-noinfo,

Products Affected

Vendor Product Version
cpanel cpanel *
CVE-2019-14394 LOW

cPanel before 80.0.5 allows unsafe file operations in the context of the root account via the fetch_ssl_certificates_for_fqdns API (SEC-489).

CVSS 2.0

Severity: LOW

Problem Type: NVD-CWE-noinfo,

Products Affected

Vendor Product Version
cpanel cpanel *
CVE-2019-14395 LOW

cPanel before 80.0.5 uses world-readable permissions for the Queueprocd log (SEC-494).

CVSS 2.0

Severity: LOW

Problem Type: CWE-732,

Products Affected

Vendor Product Version
cpanel cpanel *
CVE-2019-14396 LOW

API Analytics adminbin in cPanel before 80.0.5 allows spoofed insertions of log data (SEC-495).

CVSS 2.0

Severity: LOW

Problem Type: NVD-CWE-noinfo,

Products Affected

Vendor Product Version
cpanel cpanel *
CVE-2019-14397 MEDIUM

cPanel before 80.0.5 allows demo accounts to modify arbitrary files via the extractfile API1 call (SEC-496).

CVSS 2.0

Severity: MEDIUM

Problem Type: NVD-CWE-noinfo,

Products Affected

Vendor Product Version
cpanel cpanel *
CVE-2019-14398 MEDIUM

cPanel before 80.0.5 allows demo accounts to execute arbitrary code via ajax_maketext_syntax_util.pl (SEC-498).

CVSS 2.0

Severity: MEDIUM

Problem Type: NVD-CWE-noinfo,

Products Affected

Vendor Product Version
cpanel cpanel *
CVE-2019-14399 MEDIUM

The SSL certificate-storage feature in cPanel before 78.0.18 allows unsafe file operations in the context of the root account (SEC-477).

CVSS 2.0

Severity: MEDIUM

Problem Type: NVD-CWE-noinfo,

Products Affected

Vendor Product Version
cpanel cpanel *
CVE-2019-14400 HIGH

cPanel before 78.0.18 allows local users to escalate to root access because of userdata cache misparsing (SEC-479).

CVSS 2.0

Severity: HIGH

Problem Type: NVD-CWE-noinfo,

Products Affected

Vendor Product Version
cpanel cpanel *
CVE-2019-14401 MEDIUM

cPanel before 78.0.18 allows code execution via an addforward API1 call (SEC-480).

CVSS 2.0

Severity: MEDIUM

Problem Type: NVD-CWE-noinfo,

Products Affected

Vendor Product Version
cpanel cpanel *
CVE-2019-14402 LOW

cPanel before 78.0.18 unsafely determines terminal capabilities by using infocmp (SEC-481).

CVSS 2.0

Severity: LOW

Problem Type: NVD-CWE-noinfo,

Products Affected

Vendor Product Version
cpanel cpanel *
CVE-2019-14403 MEDIUM

cPanel before 78.0.18 offers an open mail relay because of incorrect domain-redirect routing (SEC-483).

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-601,

Products Affected

Vendor Product Version
cpanel cpanel *
CVE-2019-14404 MEDIUM

cPanel before 78.0.18 allows certain file-read operations in the context of the root account via the Exim virtual_user_spam router (SEC-484).

CVSS 2.0

Severity: MEDIUM

Problem Type: NVD-CWE-noinfo,

Products Affected

Vendor Product Version
cpanel cpanel *
CVE-2019-14405 MEDIUM

cPanel before 78.0.18 allows demo accounts to execute code via securitypolicy.cg (SEC-487).

CVSS 2.0

Severity: MEDIUM

Problem Type: NVD-CWE-noinfo,

Products Affected

Vendor Product Version
cpanel cpanel *
CVE-2019-14406 MEDIUM

cPanel before 78.0.18 has stored XSS in the BoxTrapper Queue Listing (SEC-493).

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-79,

Products Affected

Vendor Product Version
cpanel cpanel *
CVE-2019-14407 MEDIUM

cPanel before 78.0.2 reveals internal data to OpenID providers (SEC-415).

CVSS 2.0

Severity: MEDIUM

Problem Type: NVD-CWE-noinfo,

Products Affected

Vendor Product Version
cpanel cpanel *
CVE-2019-14408 MEDIUM

cPanel before 78.0.2 allows a demo account to link with an OpenID provider (SEC-460).

CVSS 2.0

Severity: MEDIUM

Problem Type: NVD-CWE-noinfo,

Products Affected

Vendor Product Version
cpanel cpanel *
CVE-2019-14409 LOW

cPanel before 78.0.2 allows arbitrary file-read operations via Passenger adminbin (SEC-466).

CVSS 2.0

Severity: LOW

Problem Type: NVD-CWE-noinfo,

Products Affected

Vendor Product Version
cpanel cpanel *
CVE-2019-14410 LOW

Maketext in cPanel before 78.0.2 allows format-string injection in the Email store_filter UAPI (SEC-472).

CVSS 2.0

Severity: LOW

Problem Type: CWE-134,

Products Affected

Vendor Product Version
cpanel cpanel *
CVE-2019-14411 MEDIUM

cPanel before 78.0.2 does not properly restrict demo accounts from writing to files via the DCV UAPI (SEC-473).

CVSS 2.0

Severity: MEDIUM

Problem Type: NVD-CWE-noinfo,

Products Affected

Vendor Product Version
cpanel cpanel *
CVE-2019-14412 LOW

Maketext in cPanel before 78.0.2 allows format-string injection in the DCV check_domains_via_dns UAPI (SEC-474).

CVSS 2.0

Severity: LOW

Problem Type: CWE-134,

Products Affected

Vendor Product Version
cpanel cpanel *
CVE-2019-14413 MEDIUM

cPanel before 78.0.2 allows certain file-write operations as shared users during connection resets (SEC-476).

CVSS 2.0

Severity: MEDIUM

Problem Type: NVD-CWE-noinfo,

Products Affected

Vendor Product Version
cpanel cpanel *
CVE-2019-14414 LOW

In cPanel before 78.0.2, a Userdata cache temporary file can conflict with domains (SEC-478).

CVSS 2.0

Severity: LOW

Problem Type: NVD-CWE-noinfo,

Products Affected

Vendor Product Version
cpanel cpanel *
CVE-2019-17375 MEDIUM

cPanel before 82.0.15 allows API token credentials to persist after an account has been renamed or terminated (SEC-517).

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 8.8 HIGH CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H 2.8 5.9

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-613,

Products Affected

Vendor Product Version
cpanel cpanel *
CVE-2019-17376 MEDIUM

cPanel before 82.0.15 allows self XSS in the SSL Certificate Upload interface (SEC-521).

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 6.1 MEDIUM CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N 2.8 2.7

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-79,

Products Affected

Vendor Product Version
cpanel cpanel *
CVE-2019-17377 MEDIUM

cPanel before 82.0.15 allows self XSS in LiveAPI example scripts (SEC-524).

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 6.1 MEDIUM CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N 2.8 2.7

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-79,

Products Affected

Vendor Product Version
cpanel cpanel *
CVE-2019-17378 MEDIUM

cPanel before 82.0.15 allows self XSS in the SSL Key Delete interface (SEC-526).

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 6.1 MEDIUM CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N 2.8 2.7

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-79,

Products Affected

Vendor Product Version
cpanel cpanel *
CVE-2019-17379 MEDIUM

cPanel before 82.0.15 allows self stored XSS in the WHM SSL Storage Manager interface (SEC-527).

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 6.1 MEDIUM CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N 2.8 2.7

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-79,

Products Affected

Vendor Product Version
cpanel cpanel *
CVE-2019-17380 MEDIUM

cPanel before 82.0.15 allows self XSS in the WHM Update Preferences interface (SEC-528).

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 6.1 MEDIUM CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N 2.8 2.7

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-79,

Products Affected

Vendor Product Version
cpanel cpanel *
CVE-2019-20490 MEDIUM

cPanel before 82.0.18 allows authentication bypass because webmail usernames are processed inconsistently (SEC-499).

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 8.8 HIGH CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H 2.8 5.9

CVSS 2.0

Severity: MEDIUM

Problem Type: NVD-CWE-noinfo,

Products Affected

Vendor Product Version
cpanel cpanel *
CVE-2019-20491 MEDIUM

cPanel before 82.0.18 allows attackers to leverage virtual mail accounts in order to bypass account suspensions (SEC-508).

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 5.4 MEDIUM CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:N 2.8 2.5

CVSS 2.0

Severity: MEDIUM

Problem Type: NVD-CWE-noinfo,

Products Affected

Vendor Product Version
cpanel cpanel *
CVE-2019-20492 MEDIUM

cPanel before 82.0.18 allows authentication bypass because of misparsing of the format of the password file (SEC-516).

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 8.8 HIGH CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H 2.8 5.9

CVSS 2.0

Severity: MEDIUM

Problem Type: NVD-CWE-noinfo,

Products Affected

Vendor Product Version
cpanel cpanel *
CVE-2019-20493 MEDIUM

cPanel before 82.0.18 allows self-XSS because JSON string escaping is mishandled (SEC-520).

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 6.1 MEDIUM CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N 2.8 2.7

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-79,

Products Affected

Vendor Product Version
cpanel cpanel *
CVE-2019-20494 LOW

In cPanel before 82.0.18, Cpanel::Rand::Get can produce a predictable series of numbers (SEC-525).

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 3.3 LOW CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N 1.8 1.4

CVSS 2.0

Severity: LOW

Problem Type: CWE-330,

Products Affected

Vendor Product Version
cpanel cpanel *
CVE-2019-20495 MEDIUM

cPanel before 82.0.18 allows attackers to read an arbitrary database via MySQL dump streaming (SEC-531).

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 6.5 MEDIUM CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N 2.8 3.6

CVSS 2.0

Severity: MEDIUM

Problem Type: NVD-CWE-noinfo,

Products Affected

Vendor Product Version
cpanel cpanel *
CVE-2019-20496 MEDIUM

cPanel before 82.0.18 allows attackers to conduct arbitrary chown operations as root during log processing (SEC-532).

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 5.5 MEDIUM CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:N 1.8 3.6

CVSS 2.0

Severity: MEDIUM

Problem Type: NVD-CWE-noinfo,

Products Affected

Vendor Product Version
cpanel cpanel *
CVE-2019-20497 LOW

cPanel before 82.0.18 allows stored XSS via WHM Backup Restoration (SEC-533).

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 5.4 MEDIUM CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N 2.3 2.7

CVSS 2.0

Severity: LOW

Problem Type: CWE-79,

Products Affected

Vendor Product Version
cpanel cpanel *
CVE-2019-20498 HIGH

cPanel before 82.0.18 allows WebDAV authentication bypass because the connection-sharing logic is incorrect (SEC-534).

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 9.8 CRITICAL CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H 3.9 5.9

CVSS 2.0

Severity: HIGH

Problem Type: NVD-CWE-noinfo,

Products Affected

Vendor Product Version
cpanel cpanel *
CVE-2020-10113 MEDIUM

cPanel before 84.0.20 allows self XSS via a temporary character-set specification (SEC-515).

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 6.1 MEDIUM CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N 2.8 2.7

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-79,

Products Affected

Vendor Product Version
cpanel cpanel *
CVE-2020-10114 MEDIUM

cPanel before 84.0.20 allows stored self-XSS via the HTML file editor (SEC-535).

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 6.1 MEDIUM CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N 2.8 2.7

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-79,

Products Affected

Vendor Product Version
cpanel cpanel *
CVE-2020-10115 HIGH

cPanel before 84.0.20, when PowerDNS is used, allows arbitrary code execution as root via dnsadmin. (SEC-537).

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.2 HIGH CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H 1.2 5.9

CVSS 2.0

Severity: HIGH

Problem Type: NVD-CWE-noinfo,

Products Affected

Vendor Product Version
cpanel cpanel *
CVE-2020-10116 MEDIUM

cPanel before 84.0.20 allows attackers to bypass intended restrictions on features and demo accounts via WebDisk UAPI calls (SEC-541).

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 5.3 MEDIUM CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N 3.9 1.4

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-862,

Products Affected

Vendor Product Version
cpanel cpanel *
CVE-2020-10117 MEDIUM

cPanel before 84.0.20 mishandles enforcement of demo checks in the Market UAPI namespace (SEC-542).

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 9.1 CRITICAL CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N 3.9 5.2

CVSS 2.0

Severity: MEDIUM

Problem Type: NVD-CWE-noinfo,

Products Affected

Vendor Product Version
cpanel cpanel *
CVE-2020-10118 MEDIUM

cPanel before 84.0.20 allows a demo account to modify files via Branding API calls (SEC-543).

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 9.1 CRITICAL CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N 3.9 5.2

CVSS 2.0

Severity: MEDIUM

Problem Type: NVD-CWE-noinfo,

Products Affected

Vendor Product Version
cpanel cpanel *
CVE-2020-10119 HIGH

cPanel before 84.0.20 allows a demo account to achieve remote code execution via a cpsrvd rsync shell (SEC-544).

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 9.8 CRITICAL CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H 3.9 5.9

CVSS 2.0

Severity: HIGH

Problem Type: NVD-CWE-noinfo,

Products Affected

Vendor Product Version
cpanel cpanel *
CVE-2020-10120 HIGH

cPanel before 84.0.20 allows resellers to achieve remote code execution as root via a cpsrvd rsync shell (SEC-545).

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.2 HIGH CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H 1.2 5.9

CVSS 2.0

Severity: HIGH

Problem Type: NVD-CWE-noinfo,

Products Affected

Vendor Product Version
cpanel cpanel *
CVE-2020-10121 HIGH

cPanel before 84.0.20 allows a demo account to achieve code execution via PassengerApps APIs (SEC-546).

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 9.8 CRITICAL CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H 3.9 5.9

CVSS 2.0

Severity: HIGH

Problem Type: NVD-CWE-Other,

Products Affected

Vendor Product Version
cpanel cpanel *
CVE-2020-10122 MEDIUM

cPanel before 84.0.20 allows a webmail or demo account to delete arbitrary files (SEC-547).

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 6.5 MEDIUM CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:L 3.9 2.5

CVSS 2.0

Severity: MEDIUM

Problem Type: NVD-CWE-noinfo,

Products Affected

Vendor Product Version
cpanel cpanel *
CVE-2020-12784 MEDIUM

cPanel before 86.0.14 allows remote attackers to trigger a bandwidth suspension via mail log strings (SEC-505).

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 5.3 MEDIUM CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L 3.9 1.4

CVSS 2.0

Severity: MEDIUM

Problem Type: NVD-CWE-noinfo,

Products Affected

Vendor Product Version
cpanel cpanel *
CVE-2020-12785 MEDIUM

cPanel before 86.0.14 allows attackers to obtain access to the current working directory via the account backup feature (SEC-540).

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 8.1 HIGH CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:N 2.8 5.2

CVSS 2.0

Severity: MEDIUM

Problem Type: NVD-CWE-noinfo,

Products Affected

Vendor Product Version
cpanel cpanel *
CVE-2020-26098 HIGH

cPanel before 88.0.3 mishandles the Exim filter path, leading to remote code execution (SEC-485).

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 9.8 CRITICAL CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H 3.9 5.9

CVSS 2.0

Severity: HIGH

Problem Type: NVD-CWE-noinfo,

Products Affected

Vendor Product Version
cpanel cpanel *
CVE-2020-26099 MEDIUM

cPanel before 88.0.3 allows attackers to bypass the SMTP greylisting protection mechanism (SEC-491).

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.5 HIGH CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N 3.9 3.6

CVSS 2.0

Severity: MEDIUM

Problem Type: NVD-CWE-Other,

Products Affected

Vendor Product Version
cpanel cpanel *
CVE-2020-26100 HIGH

chsh in cPanel before 88.0.3 allows a Jailshell escape (SEC-497).

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 9.8 CRITICAL CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H 3.9 5.9

CVSS 2.0

Severity: HIGH

Problem Type: NVD-CWE-Other,

Products Affected

Vendor Product Version
cpanel cpanel *
CVE-2020-26101 MEDIUM

In cPanel before 88.0.3, insecure RNDC credentials are used for BIND on a templated VM (SEC-549).

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 9.8 CRITICAL CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H 3.9 5.9

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-287,

Products Affected

Vendor Product Version
cpanel cpanel *
CVE-2020-26102 MEDIUM

In cPanel before 88.0.3, an insecure auth policy API key is used by Dovecot on a templated VM (SEC-550).

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.5 HIGH CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N 3.9 3.6

CVSS 2.0

Severity: MEDIUM

Problem Type: NVD-CWE-noinfo,

Products Affected

Vendor Product Version
cpanel cpanel *
CVE-2020-26103 MEDIUM

In cPanel before 88.0.3, an insecure site password is used for Mailman on a templated VM (SEC-551).

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.5 HIGH CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N 3.9 3.6

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-521,

Products Affected

Vendor Product Version
cpanel cpanel *
CVE-2020-26104 MEDIUM

In cPanel before 88.0.3, an insecure SRS secret is used on a templated VM (SEC-552).

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.5 HIGH CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N 3.9 3.6

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-922,

Products Affected

Vendor Product Version
cpanel cpanel *
CVE-2020-26105 MEDIUM

In cPanel before 88.0.3, insecure chkservd test credentials are used on a templated VM (SEC-554).

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 9.8 CRITICAL CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H 3.9 5.9

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-287,

Products Affected

Vendor Product Version
cpanel cpanel *
CVE-2020-26106 MEDIUM

cPanel before 88.0.3 has weak permissions (world readable) for the proxy subdomains log file (SEC-558).

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.5 HIGH CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N 3.9 3.6

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-732,

Products Affected

Vendor Product Version
cpanel cpanel *
CVE-2020-26107 MEDIUM

cPanel before 88.0.3, upon an upgrade, establishes predictable PowerDNS API keys (SEC-561).

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.5 HIGH CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N 3.9 3.6

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-330,

Products Affected

Vendor Product Version
cpanel cpanel *
CVE-2020-26108 HIGH

cPanel before 88.0.13 mishandles file-extension dispatching, leading to code execution (SEC-488).

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 9.8 CRITICAL CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H 3.9 5.9

CVSS 2.0

Severity: HIGH

Problem Type: NVD-CWE-Other,

Products Affected

Vendor Product Version
cpanel cpanel *
CVE-2020-26109 MEDIUM

cPanel before 88.0.13 allows bypass of a protection mechanism that attempted to restrict package modification (SEC-557).

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.5 HIGH CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N 3.9 3.6

CVSS 2.0

Severity: MEDIUM

Problem Type: NVD-CWE-Other,

Products Affected

Vendor Product Version
cpanel cpanel *
CVE-2020-26110 MEDIUM

cPanel before 88.0.13 allows self XSS via DNS Zone Manager DNSSEC interfaces (SEC-564).

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 6.1 MEDIUM CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N 2.8 2.7

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-79,

Products Affected

Vendor Product Version
cpanel cpanel *
CVE-2020-26111 MEDIUM

cPanel before 90.0.10 allows self XSS via the WHM Edit DNS Zone interface (SEC-566).

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 6.1 MEDIUM CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N 2.8 2.7

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-79,

Products Affected

Vendor Product Version
cpanel cpanel *
CVE-2020-26112 MEDIUM

The email quota cache in cPanel before 90.0.10 allows overwriting of files.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.5 HIGH CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N 3.9 3.6

CVSS 2.0

Severity: MEDIUM

Problem Type: NVD-CWE-noinfo,

Products Affected

Vendor Product Version
cpanel cpanel *
CVE-2020-26113 MEDIUM

cPanel before 90.0.10 allows self XSS via WHM Manage API Tokens interfaces (SEC-569).

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 6.1 MEDIUM CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N 2.8 2.7

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-79,

Products Affected

Vendor Product Version
cpanel cpanel *
CVE-2020-26114 MEDIUM

cPanel before 90.0.10 allows self XSS via the Cron Jobs interface (SEC-573).

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 6.1 MEDIUM CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N 2.8 2.7

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-79,

Products Affected

Vendor Product Version
cpanel cpanel *
CVE-2020-26115 MEDIUM

cPanel before 90.0.10 allows self XSS via the Cron Editor interface (SEC-574).

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 6.1 MEDIUM CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N 2.8 2.7

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-79,

Products Affected

Vendor Product Version
cpanel cpanel *
CVE-2020-29135 LOW

cPanel before 90.0.17 has multiple instances of URL parameter injection (SEC-567).

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 4.1 MEDIUM CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:N/I:L/A:N 2.3 1.4

CVSS 2.0

Severity: LOW

Problem Type: CWE-838,

Products Affected

Vendor Product Version
cpanel cpanel *
CVE-2020-29136 MEDIUM

In cPanel before 90.0.17, 2FA can be bypassed via a brute-force approach (SEC-575).

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 6.5 MEDIUM CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N 2.8 3.6

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-307,

Products Affected

Vendor Product Version
cpanel cpanel *
CVE-2020-29137 MEDIUM

cPanel before 90.0.17 allows self-XSS via the WHM Transfer Tool interface (SEC-577).

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 6.1 MEDIUM CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N 2.8 2.7

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-79,

Products Affected

Vendor Product Version
cpanel cpanel *
CVE-2021-26266 MEDIUM

cPanel before 92.0.9 allows a Reseller to bypass the suspension lock (SEC-578).

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.5 HIGH CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N 3.9 3.6

CVSS 2.0

Severity: MEDIUM

Problem Type: NVD-CWE-Other,

Products Affected

Vendor Product Version
cpanel cpanel *
CVE-2021-26267 MEDIUM

cPanel before 92.0.9 allows a MySQL user (who has an old-style password hash) to bypass suspension (SEC-579).

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.5 HIGH CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N 3.9 3.6

CVSS 2.0

Severity: MEDIUM

Problem Type: NVD-CWE-noinfo,

Products Affected

Vendor Product Version
cpanel cpanel *
CVE-2021-31803 MEDIUM

cPanel before 94.0.3 allows self-XSS via EasyApache 4 Save Profile (SEC-581).

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 6.1 MEDIUM CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N 2.8 2.7

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-79,

Products Affected

Vendor Product Version
cpanel cpanel *
CVE-2021-38584 MEDIUM

The WHM Locale Upload feature in cPanel before 98.0.1 allows XXE attacks (SEC-585).

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.2 HIGH CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H 1.2 5.9

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-611,

Products Affected

Vendor Product Version
cpanel cpanel *
CVE-2021-38585 MEDIUM

The WHM Locale Upload feature in cPanel before 98.0.1 allows unserialization attacks (SEC-585).

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.2 HIGH CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H 1.2 5.9

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-502,

Products Affected

Vendor Product Version
cpanel cpanel *
CVE-2021-38586 LOW

In cPanel before 98.0.1, /scripts/cpan_config performs unsafe operations on files (SEC-589).

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 4.4 MEDIUM CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:H/A:N 0.8 3.6

CVSS 2.0

Severity: LOW

Problem Type: NVD-CWE-noinfo,

Products Affected

Vendor Product Version
cpanel cpanel *
CVE-2021-38587 MEDIUM

In cPanel before 96.0.13, scripts/fix-cpanel-perl mishandles the creation of temporary files (SEC-586).

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.5 HIGH CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N 3.9 3.6

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-362,

Products Affected

Vendor Product Version
cpanel cpanel *
CVE-2021-38588 MEDIUM

In cPanel before 96.0.13, fix_cpanel_perl lacks verification of the integrity of downloads (SEC-587).

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 8.1 HIGH CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H 2.2 5.9

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-494,

Products Affected

Vendor Product Version
cpanel cpanel *
CVE-2021-38589 MEDIUM

In cPanel before 96.0.13, scripts/fix-cpanel-perl does not properly restrict the overwriting of files (SEC-588).

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 8.1 HIGH CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:H 2.8 5.2

CVSS 2.0

Severity: MEDIUM

Problem Type: NVD-CWE-noinfo,

Products Affected

Vendor Product Version
cpanel cpanel *
CVE-2021-38590 LOW

In cPanel before 96.0.8, weak permissions on web stats can lead to information disclosure (SEC-584).

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 5.5 MEDIUM CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N 1.8 3.6

CVSS 2.0

Severity: LOW

Problem Type: CWE-732,

Products Affected

Vendor Product Version
cpanel cpanel *
CVE-2023-29489

An issue was discovered in cPanel before 11.109.9999.116. XSS can occur on the cpsrvd error page via an invalid webcall ID, aka SEC-669. The fixed versions are 11.109.9999.116, 11.108.0.13, 11.106.0.18, and 11.102.0.31.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
cve@mitre.org 5.3 MEDIUM CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L 1.8 3.4

Products Affected

Vendor Product Version
cpanel cpanel *
CVE-2025-66429

An issue was discovered in cPanel 110 through 132. A directory traversal vulnerability within the Team Manager API allows for overwrite of an arbitrary file. This can allow for privilege escalation to the root user.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
134c704f-9b21-4f2e-91b3-4a467353bcc0 8.8 HIGH CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H 2.8 5.9

Products Affected

Vendor Product Version
cpanel cpanel *