Vulnerabilities > Cpanel > Cpanel > 11.51.9999.159
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2019-08-06 | CVE-2016-10796 | Permission Issues vulnerability in Cpanel cPanel before 58.0.4 initially uses weak permissions for Apache HTTP Server log files (SEC-130). | 2.1 |
2019-08-06 | CVE-2016-10795 | Cross-site Scripting vulnerability in Cpanel cPanel before 59.9999.145 allows stored XSS in the WHM tail_upcp2.cgi interface (SEC-156). | 4.3 |
2019-08-06 | CVE-2016-10794 | Information Exposure vulnerability in Cpanel cPanel before 59.9999.145 allows arbitrary file-read operations because of a multipart form processing error (SEC-154). | 4.0 |
2019-08-06 | CVE-2016-10793 | Improper Input Validation vulnerability in Cpanel cPanel before 59.9999.145 allows arbitrary code execution due to an incorrect #! in Mail::SPF scripts (SEC-152). | 6.5 |
2019-08-06 | CVE-2016-10792 | Improper Access Control vulnerability in Cpanel cPanel before 59.9999.145 allows code execution in the context of other accounts via mailman list archives (SEC-141). | 6.5 |
2019-08-02 | CVE-2017-18426 | Information Exposure Through Log Files vulnerability in Cpanel cPanel before 66.0.2 allows resellers to read other accounts' domain log files (SEC-288). | 4.0 |
2019-08-02 | CVE-2017-18420 | Cross-site Scripting vulnerability in Cpanel cPanel before 66.0.2 allows stored XSS during WHM cPAddons processing (SEC-269). | 3.5 |
2019-08-02 | CVE-2017-18419 | Cross-site Scripting vulnerability in Cpanel cPanel before 66.0.2 allows stored XSS during WHM cPAddons uninstallation (SEC-266). | 3.5 |
2019-08-02 | CVE-2017-18418 | Cross-site Scripting vulnerability in Cpanel cPanel before 66.0.2 allows stored XSS during WHM cPAddons file operations (SEC-265). | 3.5 |
2019-08-02 | CVE-2017-18417 | Cross-site Scripting vulnerability in Cpanel cPanel before 66.0.2 allows stored XSS during WHM cPAddons installation (SEC-263). | 3.5 |