Note:
This project will be discontinued after December 13, 2021. [more]
Product:
Cpanel
(Cpanel)| Repositories |
Unknown: This might be proprietary software. |
| #Vulnerabilities | 415 |
| Date | Id | Summary | Products | Score | Patch | Annotated |
|---|---|---|---|---|---|---|
| 2019-08-01 | CVE-2016-10844 | The chcpass script in cPanel before 11.54.0.4 reveals a password hash (SEC-77). | Cpanel | 6.5 | ||
| 2019-08-01 | CVE-2016-10843 | cPanel before 11.54.0.4 allows code execution in the context of shared users via JSON-API (SEC-76). | Cpanel | 8.1 | ||
| 2019-08-01 | CVE-2016-10841 | The bin/mkvhostspasswd script in cPanel before 11.54.0.4 discloses password hashes (SEC-73). | Cpanel | 5.3 | ||
| 2019-08-01 | CVE-2016-10837 | cPanel before 11.54.0.4 allows arbitrary code execution because of an unsafe @INC path (SEC-46). | Cpanel | 7.5 | ||
| 2019-08-07 | CVE-2016-10806 | cPanel before 57.9999.54 allows self XSS on the Paper Lantern Landing Page (SEC-110). | Cpanel | 5.4 | ||
| 2019-08-06 | CVE-2016-10785 | cPanel before 60.0.25 allows attackers to discover file contents during file copy operations (SEC-185). | Cpanel | 6.5 | ||
| 2019-08-06 | CVE-2016-10784 | cPanel before 60.0.25 allows self XSS in the alias upload interface (SEC-184). | Cpanel | 5.4 | ||
| 2019-08-06 | CVE-2016-10783 | cPanel before 60.0.25 allows self stored XSS in SSL_listkeys (SEC-182). | Cpanel | 5.4 | ||
| 2019-08-06 | CVE-2016-10782 | cPanel before 60.0.25 allows self stored XSS in postgres API1 listdbs (SEC-181). | Cpanel | 5.4 | ||
| 2019-08-06 | CVE-2016-10781 | cPanel before 60.0.25 allows self XSS in the UI_confirm API (SEC-180). | Cpanel | 5.4 |