Latest CVE Feed

  1. Home
  2. Vulnerabilities
  3. Latest
Following is the list of latest published vulnerabilities. You can filter the list based on the severity of the vulnerability, whether it is actively exploited (also known as CISA KEV List) or remotely exploitable. You can also sort the list based on the published date, last updated date, or CVSS score.
Latest Critical Actively Exploited Remotely Exploitable
Published Last Updated CVSS Score

  • 7.2

    HIGH
    CVE-2016-10831

    cPanel before 55.9999.141 does not perform as two-factor authentication check when possessing another account (SEC-101).... Read more

    Affected Products : cpanel
    • EPSS Score: %0.56
    • Published: Aug. 01, 2019
    • Modified: Nov. 21, 2024

  • 8.1

    HIGH
    CVE-2016-10830

    cPanel before 55.9999.141 allows ACL bypass for AppConfig applications via magic_revision (SEC-100).... Read more

    Affected Products : cpanel
    • EPSS Score: %0.21
    • Published: Aug. 01, 2019
    • Modified: Nov. 21, 2024

  • 6.8

    MEDIUM
    CVE-2016-10829

    cPanel before 55.9999.141 allows arbitrary file-read operations because of a multipart form processing error (SEC-99).... Read more

    Affected Products : cpanel
    • EPSS Score: %0.39
    • Published: Aug. 01, 2019
    • Modified: Nov. 21, 2024

  • 9.0

    HIGH
    CVE-2016-10828

    cPanel before 55.9999.141 allows arbitrary code execution because of an unsafe @INC path (SEC-97).... Read more

    Affected Products : cpanel
    • EPSS Score: %1.42
    • Published: Aug. 01, 2019
    • Modified: Nov. 21, 2024

  • 5.4

    MEDIUM
    CVE-2016-10827

    cPanel before 55.9999.141 allows self stored XSS in WHM Edit System Mail Preferences (SEC-96).... Read more

    Affected Products : cpanel
    • EPSS Score: %0.26
    • Published: Aug. 01, 2019
    • Modified: Nov. 21, 2024

  • 8.8

    HIGH
    CVE-2016-10826

    cPanel before 55.9999.141 allows attackers to bypass Two Factor Authentication via DNS clustering requests (SEC-93).... Read more

    Affected Products : cpanel
    • EPSS Score: %0.43
    • Published: Aug. 01, 2019
    • Modified: Nov. 21, 2024

  • 8.1

    HIGH
    CVE-2016-10825

    cPanel before 55.9999.141 allows attackers to bypass a Security Policy by faking static documents (SEC-92).... Read more

    Affected Products : cpanel
    • EPSS Score: %0.27
    • Published: Aug. 01, 2019
    • Modified: Nov. 21, 2024

  • 9.8

    CRITICAL
    CVE-2016-10824

    cPanel before 55.9999.141 allows unauthenticated arbitrary code execution via DNS NS entry poisoning (SEC-90).... Read more

    Affected Products : cpanel
    • EPSS Score: %0.79
    • Published: Aug. 01, 2019
    • Modified: Nov. 21, 2024

  • 9.0

    HIGH
    CVE-2016-10823

    cPanel before 55.9999.141 allows arbitrary code execution in the context of the root account because of MakeText interpolation (SEC-89).... Read more

    Affected Products : cpanel
    • EPSS Score: %0.92
    • Published: Aug. 01, 2019
    • Modified: Nov. 21, 2024

  • 5.4

    MEDIUM
    CVE-2016-10822

    cPanel before 55.9999.141 allows self XSS in X3 Reseller Branding Images (SEC-88).... Read more

    Affected Products : cpanel
    • EPSS Score: %0.26
    • Published: Aug. 01, 2019
    • Modified: Nov. 21, 2024

  • 6.5

    MEDIUM
    CVE-2016-10821

    In cPanel before 55.9999.141, Scripts/addpop reveals a command-line password in a process list (SEC-75).... Read more

    Affected Products : cpanel
    • EPSS Score: %0.33
    • Published: Aug. 01, 2019
    • Modified: Nov. 21, 2024

  • 9.0

    HIGH
    CVE-2016-10820

    cPanel before 55.9999.141 allows daemons to access their controlling TTYs (SEC-31).... Read more

    Affected Products : cpanel
    • EPSS Score: %0.34
    • Published: Aug. 01, 2019
    • Modified: Nov. 21, 2024

  • 6.5

    MEDIUM
    CVE-2016-10819

    In cPanel before 57.9999.54, user log files become world-readable when rotated by cpanellogd (SEC-125).... Read more

    Affected Products : cpanel
    • EPSS Score: %0.33
    • Published: Aug. 01, 2019
    • Modified: Nov. 21, 2024

  • 6.5

    MEDIUM
    CVE-2016-10818

    cPanel before 57.9999.54 incorrectly sets log-file permissions in dnsadmin-startup and spamd-startup (SEC-124).... Read more

    Affected Products : cpanel
    • EPSS Score: %0.25
    • Published: Aug. 01, 2019
    • Modified: Nov. 21, 2024

  • 10.0

    HIGH
    CVE-2016-10817

    cPanel before 57.9999.54 allows SQL Injection via the ModSecurity TailWatch log file (SEC-123).... Read more

    Affected Products : cpanel
    • EPSS Score: %0.39
    • Published: Aug. 01, 2019
    • Modified: Nov. 21, 2024

  • 8.8

    HIGH
    CVE-2016-10816

    cPanel before 57.9999.54 allows Webmail accounts to execute arbitrary code through forwarders (SEC-121).... Read more

    Affected Products : cpanel
    • EPSS Score: %0.98
    • Published: Aug. 01, 2019
    • Modified: Nov. 21, 2024

  • 6.5

    MEDIUM
    CVE-2016-10815

    cPanel before 57.9999.54 allows arbitrary file-read operations for Webmail accounts via Branding APIs (SEC-120).... Read more

    Affected Products : cpanel
    • EPSS Score: %0.33
    • Published: Aug. 01, 2019
    • Modified: Nov. 21, 2024

  • 8.8

    HIGH
    CVE-2016-10814

    cPanel before 57.9999.54 allows demo-mode escape via show_template.stor (SEC-119).... Read more

    Affected Products : cpanel
    • EPSS Score: %0.51
    • Published: Aug. 01, 2019
    • Modified: Nov. 21, 2024

  • 5.4

    MEDIUM
    CVE-2016-10813

    cPanel before 57.9999.54 allows self XSS during ftp account creation under addon domains (SEC-118).... Read more

    Affected Products : cpanel
    • EPSS Score: %0.26
    • Published: Aug. 01, 2019
    • Modified: Nov. 21, 2024

  • 9.0

    HIGH
    CVE-2016-10812

    In cPanel before 57.9999.54, /scripts/enablefileprotect exposed TTYs (SEC-117).... Read more

    Affected Products : cpanel
    • EPSS Score: %0.51
    • Published: Aug. 07, 2019
    • Modified: Nov. 21, 2024
Showing 20 of 291779 Results