Vulnerabilities > Improper Authentication
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2019-08-01 | CVE-2016-10832 | Improper Authentication vulnerability in Cpanel cPanel before 55.9999.141 allows FTP cPHulk bypass via account name munging (SEC-102). | 6.5 |
| 2019-08-01 | CVE-2016-10831 | Improper Authentication vulnerability in Cpanel cPanel before 55.9999.141 does not perform as two-factor authentication check when possessing another account (SEC-101). | 7.2 |
| 2019-08-01 | CVE-2018-20924 | Improper Authentication vulnerability in Cpanel cPanel before 70.0.23 allows arbitrary file-read and file-unlink operations via WHM style uploads (SEC-378). | 5.5 |
| 2019-08-01 | CVE-2016-10836 | Improper Authentication vulnerability in Cpanel cPanel before 55.9999.141 allows arbitrary file-read operations during authentication with caldav (SEC-108). | 6.5 |
| 2019-08-01 | CVE-2018-20888 | Improper Authentication vulnerability in Cpanel cPanel before 74.0.0 allows file modification in the context of the root account because of incorrect HTTP authentication (SEC-424). | 5.5 |
| 2019-07-30 | CVE-2019-5455 | Improper Authentication vulnerability in Nextcloud 3.6.0 Bypassing lock protection exists in Nextcloud Android app 3.6.0 when creating a multi-account and aborting the process. | 6.8 |
| 2019-07-30 | CVE-2019-5453 | Improper Authentication vulnerability in Nextcloud Bypass lock protection in the Nextcloud Android app prior to version 3.3.0 allowed access to files when being prompted for the lock protection and switching to the Nextcloud file provider. | 6.1 |
| 2019-07-30 | CVE-2019-11202 | Improper Authentication vulnerability in Suse Rancher An issue was discovered that affects the following versions of Rancher: v2.0.0 through v2.0.13, v2.1.0 through v2.1.8, and v2.2.0 through 2.2.1. | 9.8 |
| 2019-07-29 | CVE-2018-17213 | Improper Authentication vulnerability in Printeron Central Print Services 2.5/4.1.4 An issue was discovered in PrinterOn Central Print Services (CPS) through 4.1.4. | 8.8 |
| 2019-07-29 | CVE-2019-1020018 | Improper Authentication vulnerability in Discourse Discourse before 2.3.0 and 2.4.x before 2.4.0.beta3 lacks a confirmation screen when logging in via an email link. | 7.3 |