[Forgot Password]
Login  Register Subscribe

30481

 
 

423868

 
 

256040

 
 

909

 
 

199103

 
 

282

 
 
 
Paid content will be excluded from the download.

Filter
Matches : 254275 Download | Alert*

cPanel before 68.0.15 allows domain data to be deleted for domains with the .lock TLD (SEC-341).

cPanel before 68.0.15 allows arbitrary file-read operations because of the backup .htaccess modification logic (SEC-345).

cPanel before 67.9999.103 allows SQL injection during eximstats processing (SEC-276).

cPanel before 67.9999.103 does not enforce SSL hostname verification for the support-agreement download (SEC-279).

cPanel before 67.9999.103 allows stored XSS in WHM MySQL Password Change interfaces (SEC-282).

In cPanel before 67.9999.103, the backup interface could return a backup archive with all MySQL databases (SEC-283).

Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: This candidate was in a CNA pool that was not assigned to any issues during 2017. Notes: none

In cPanel before 67.9999.103, a user account's backup archive could contain all MySQL databases on the server (SEC-284).

The "addon domain conversion" feature in cPanel before 67.9999.103 can copy all MySQL databases to the new account (SEC-285).

cPanel before 67.9999.103 allows Apache HTTP Server log files to become world-readable because of mishandling on an account rename (SEC-296).


Pages:      Start    14592    14593    14594    14595    14596    14597    14598    14599    14600    14601    14602    14603    14604    14605    ..   25427

© SecPod Technologies