Shodan
Vulnerabilities
Vulnerable Software
Cpanel:  >> Cpanel  Security Vulnerabilities
CVE-2016-10781
cPanel before 60.0.25 allows self XSS in the UI_confirm API (SEC-180).
CVSS Score
5.4
EPSS Score
0.003
Published
2019-08-06
CVE-2016-10782
cPanel before 60.0.25 allows self stored XSS in postgres API1 listdbs (SEC-181).
CVSS Score
5.4
EPSS Score
0.003
Published
2019-08-06
CVE-2016-10783
cPanel before 60.0.25 allows self stored XSS in SSL_listkeys (SEC-182).
CVSS Score
5.4
EPSS Score
0.003
Published
2019-08-06
CVE-2016-10784
cPanel before 60.0.25 allows self XSS in the alias upload interface (SEC-184).
CVSS Score
5.4
EPSS Score
0.003
Published
2019-08-06
CVE-2016-10785
cPanel before 60.0.25 allows attackers to discover file contents during file copy operations (SEC-185).
CVSS Score
6.5
EPSS Score
0.003
Published
2019-08-06
CVE-2016-10786
cPanel before 60.0.25 allows members of the nobody group to read Apache HTTP Server SSL keys (SEC-186).
CVSS Score
6.5
EPSS Score
0.003
Published
2019-08-06
CVE-2016-10787
The Host Access Control feature in cPanel before 60.0.25 mishandles actionless host.deny entries (SEC-187).
CVSS Score
8.1
EPSS Score
0.003
Published
2019-08-06
CVE-2017-18473
cPanel before 62.0.4 allows self XSS on the webmail Password and Security page (SEC-199).
CVSS Score
5.4
EPSS Score
0.003
Published
2019-08-05
CVE-2017-18474
cPanel before 62.0.4 allows arbitrary file-read operations via Exim valiases (SEC-201).
CVSS Score
6.5
EPSS Score
0.003
Published
2019-08-05
CVE-2017-18475
In cPanel before 62.0.4, Exim piped filters ran in the context of an incorrect user account when delivering to a system user (SEC-204).
CVSS Score
8.8
EPSS Score
0.005
Published
2019-08-05


Products
Pricing
Contact Us

Shodan ® - All rights reserved