Filtered by vendor Cpanel
Subscriptions
Total
426 CVE
| CVE | Vendors | Products | Updated | CVSS v3.1 |
|---|---|---|---|---|
| CVE-2016-10843 | 1 Cpanel | 1 Cpanel | 2024-08-06 | N/A |
| cPanel before 11.54.0.4 allows code execution in the context of shared users via JSON-API (SEC-76). | ||||
| CVE-2016-10854 | 1 Cpanel | 1 Cpanel | 2024-08-06 | N/A |
| cPanel before 11.54.0.4 allows self XSS in the X3 Entropy Banner interface (SEC-87). | ||||
| CVE-2016-10832 | 1 Cpanel | 1 Cpanel | 2024-08-06 | N/A |
| cPanel before 55.9999.141 allows FTP cPHulk bypass via account name munging (SEC-102). | ||||
| CVE-2016-10846 | 1 Cpanel | 1 Cpanel | 2024-08-06 | N/A |
| cPanel before 11.54.0.4 allows arbitrary file-chown and file-chmod operations during Roundcube database conversions (SEC-79). | ||||
| CVE-2016-10849 | 1 Cpanel | 1 Cpanel | 2024-08-06 | N/A |
| cPanel before 11.54.0.4 allows certain file-chmod operations in scripts/secureit (SEC-82). | ||||
| CVE-2016-10836 | 1 Cpanel | 1 Cpanel | 2024-08-06 | N/A |
| cPanel before 55.9999.141 allows arbitrary file-read operations during authentication with caldav (SEC-108). | ||||
| CVE-2016-10831 | 1 Cpanel | 1 Cpanel | 2024-08-06 | N/A |
| cPanel before 55.9999.141 does not perform as two-factor authentication check when possessing another account (SEC-101). | ||||
| CVE-2016-10833 | 1 Cpanel | 1 Cpanel | 2024-08-06 | N/A |
| cPanel before 55.9999.141 mishandles username-based blocking for PRE requests in cPHulkd (SEC-104). | ||||
| CVE-2016-10857 | 1 Cpanel | 1 Cpanel | 2024-08-06 | N/A |
| cPanel before 11.54.0.0 allows a bypass of the e-mail sending limit (SEC-60). | ||||
| CVE-2016-10856 | 1 Cpanel | 1 Cpanel | 2024-08-06 | N/A |
| cPanel before 11.54.0.0 allows subaccounts to discover sensitive data through comet feeds (SEC-29). | ||||
| CVE-2016-10815 | 1 Cpanel | 1 Cpanel | 2024-08-06 | N/A |
| cPanel before 57.9999.54 allows arbitrary file-read operations for Webmail accounts via Branding APIs (SEC-120). | ||||
| CVE-2016-10841 | 1 Cpanel | 1 Cpanel | 2024-08-06 | N/A |
| The bin/mkvhostspasswd script in cPanel before 11.54.0.4 discloses password hashes (SEC-73). | ||||
| CVE-2016-10802 | 1 Cpanel | 1 Cpanel | 2024-08-06 | N/A |
| cPanel before 58.0.4 allows code execution in the context of other user accounts through the PHP CGI handler (SEC-142). | ||||
| CVE-2016-10839 | 1 Cpanel | 1 Cpanel | 2024-08-06 | N/A |
| cPanel before 11.54.0.4 allows SQL injection in bin/horde_update_usernames (SEC-71). | ||||
| CVE-2016-10850 | 1 Cpanel | 1 Cpanel | 2024-08-06 | N/A |
| cPanel before 11.54.0.4 allows arbitrary code execution via scripts/synccpaddonswithsqlhost (SEC-83). | ||||
| CVE-2016-10814 | 1 Cpanel | 1 Cpanel | 2024-08-06 | N/A |
| cPanel before 57.9999.54 allows demo-mode escape via show_template.stor (SEC-119). | ||||
| CVE-2016-10852 | 1 Cpanel | 1 Cpanel | 2024-08-06 | N/A |
| cPanel before 11.54.0.4 lacks ACL enforcement in the AppConfig subsystem (SEC-85). | ||||
| CVE-2016-10795 | 1 Cpanel | 1 Cpanel | 2024-08-06 | N/A |
| cPanel before 59.9999.145 allows stored XSS in the WHM tail_upcp2.cgi interface (SEC-156). | ||||
| CVE-2016-10835 | 1 Cpanel | 1 Cpanel | 2024-08-06 | N/A |
| cPanel before 55.9999.141 allows a POP/IMAP cPHulk bypass via account name munging (SEC-107). | ||||
| CVE-2016-10837 | 1 Cpanel | 1 Cpanel | 2024-08-06 | N/A |
| cPanel before 11.54.0.4 allows arbitrary code execution because of an unsafe @INC path (SEC-46). | ||||