Vulnerabilities > Low
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2019-08-02 | CVE-2017-18424 | Information Exposure vulnerability in Cpanel In cPanel before 66.0.2, the Apache HTTP Server configuration file is changed to world-readable when rebuilt (SEC-274). | 3.3 |
| 2019-08-02 | CVE-2017-18423 | Information Exposure Through Log Files vulnerability in Cpanel In cPanel before 66.0.2, domain log files become readable after log processing (SEC-273). | 3.3 |
| 2019-08-02 | CVE-2017-18422 | Permission Issues vulnerability in Cpanel In cPanel before 66.0.2, EasyApache 4 conversion sets weak domlog ownership and permissions (SEC-272). | 3.3 |
| 2019-08-02 | CVE-2017-18421 | Improper Access Control vulnerability in Cpanel cPanel before 66.0.2 allows demo accounts to create databases and users (SEC-271). | 3.3 |
| 2019-08-02 | CVE-2017-18412 | Information Exposure Through Log Files vulnerability in Cpanel cPanel before 67.9999.103 allows Apache HTTP Server log files to become world-readable because of mishandling on an account rename (SEC-296). | 2.5 |
| 2019-08-02 | CVE-2017-18404 | Improper Access Control vulnerability in Cpanel cPanel before 68.0.15 allows domain data to be deleted for domains with the .lock TLD (SEC-341). | 3.1 |
| 2019-08-02 | CVE-2017-18401 | Improper Input Validation vulnerability in Cpanel cPanel before 68.0.15 allows user accounts to be partially created with invalid username formats (SEC-334). | 2.7 |
| 2019-08-02 | CVE-2017-18399 | Permissions, Privileges, and Access Controls vulnerability in Cpanel cPanel before 68.0.15 allows attackers to read root's crontab file during a short time interval upon enabling or disabling sqloptimizer (SEC-332). | 3.7 |
| 2019-08-02 | CVE-2017-18398 | Improper Input Validation vulnerability in Cpanel DnsUtils in cPanel before 68.0.15 allows zone creation for hostname and account subdomains (SEC-331). | 3.8 |
| 2019-08-02 | CVE-2017-18397 | Permission Issues vulnerability in Cpanel cPanel before 68.0.15 does not preserve permissions for local backup transport (SEC-330). | 3.3 |