Show filters
425 Total Results
Displaying 201-210 of 425
Sort by:
Attacker Value
Unknown
CVE-2017-18388
Disclosure Date: August 02, 2019 (last updated November 27, 2024)
cPanel before 68.0.15 can perform unsafe file operations because Jailshell does not set the umask (SEC-315).
0
Attacker Value
Unknown
CVE-2017-18387
Disclosure Date: August 02, 2019 (last updated November 27, 2024)
cPanel before 68.0.15 allows arbitrary code execution via Maketext injection in a Reseller style upload (SEC-314).
0
Attacker Value
Unknown
CVE-2017-18386
Disclosure Date: August 02, 2019 (last updated November 27, 2024)
cPanel before 68.0.15 allows arbitrary code execution via Maketext injection in PostgresAdmin (SEC-313).
0
Attacker Value
Unknown
CVE-2017-18384
Disclosure Date: August 02, 2019 (last updated November 27, 2024)
cPanel before 68.0.15 allows jailed accounts to restore files that are outside of the jail (SEC-310).
0
Attacker Value
Unknown
CVE-2017-18382
Disclosure Date: August 02, 2019 (last updated November 27, 2024)
cPanel before 68.0.15 allows use of an unreserved e-mail address in DNS zone SOA records (SEC-306).
0
Attacker Value
Unknown
CVE-2017-18391
Disclosure Date: August 02, 2019 (last updated November 27, 2024)
cPanel before 68.0.15 allows attackers to read backup files because they are world-readable during a short time interval (SEC-323).
0
Attacker Value
Unknown
CVE-2017-18383
Disclosure Date: August 02, 2019 (last updated November 27, 2024)
cPanel before 68.0.15 writes home-directory backups to an incorrect location (SEC-309).
0
Attacker Value
Unknown
CVE-2017-18390
Disclosure Date: August 02, 2019 (last updated November 27, 2024)
cPanel before 68.0.15 allows code execution in the context of the root account because of weak permissions on incremental backups (SEC-322).
0
Attacker Value
Unknown
CVE-2016-10820
Disclosure Date: August 01, 2019 (last updated November 27, 2024)
cPanel before 55.9999.141 allows daemons to access their controlling TTYs (SEC-31).
0
Attacker Value
Unknown
CVE-2016-10826
Disclosure Date: August 01, 2019 (last updated November 27, 2024)
cPanel before 55.9999.141 allows attackers to bypass Two Factor Authentication via DNS clustering requests (SEC-93).
0
