| Page(s) : 1 ... 132 133 134 135 136 137 138 139 140 141 [142] 143 144 145 146 147 148 149 150 151 152 ... | Result(s) : 8819 |
Alerts
| DATE | NAME | CATEGORIES | DETAIL | |
|---|---|---|---|---|
| 2.7 | 2019-08-01 | CVE-2018-20938 | cve | cPanel before 68.0.27 does not enforce ownership during addpkgext and delpkgext WHM API calls (SEC-324). |
| 3.3 | 2019-08-01 | CVE-2018-20936 | cve | cPanel before 68.0.27 allows attackers to read the SRS secret via exim.conf (SEC-308). |
| 2.7 | 2019-08-01 | CVE-2018-20932 | cve | cPanel before 70.0.23 exposes Apache HTTP Server logs after creation of certain domains (SEC-406). |
| 3.8 | 2019-08-01 | CVE-2018-20927 | cve | cPanel before 70.0.23 allows jailshell escape because of incorrect crontab parsing (SEC-382). |
| 2.8 | 2019-08-01 | CVE-2018-20897 | cve | cPanel before 71.9980.37 allows arbitrary file-unlink operations via the cPAddons moderation system (SEC-395). |
| 3.9 | 2019-08-01 | CVE-2018-20896 | cve | cPanel before 71.9980.37 allows code injection in the WHM cPAddons interface (SEC-394). |
| 3.3 | 2019-08-01 | CVE-2018-20894 | cve | cPanel before 74.0.0 makes web-site contents accessible to other local users via Git repositories (SEC-443). |
| 2.3 | 2019-08-01 | CVE-2018-20893 | cve | cPanel before 74.0.0 allows file-rename operations during account renames (SEC-442). |
| 2.7 | 2019-08-01 | CVE-2015-7559 | cve | It was found that the Apache ActiveMQ client before 5.14.5 exposed a remote shutdown command in the ActiveMQConnection class. An attacker logged into a compromised broker could ... |
| 3.3 | 2019-08-01 | CVE-2018-20880 | cve | cPanel before 74.0.8 mishandles account suspension because of an invalid email_accounts.json file (SEC-445). |
| 3.3 | 2019-08-01 | CVE-2018-20873 | cve | cPanel before 74.0.8 allows local users to disable the ClamAV daemon (SEC-409). |
| 3.3 | 2019-07-31 | CVE-2019-10343 | cve | Jenkins Configuration as Code Plugin 1.24 and earlier did not properly apply masking to values expected to be hidden when logging the configuration being applied. |
| 2.4 | 2019-07-30 | CVE-2019-5452 | cve | Bypass lock protection in the Nextcloud Android app prior to version 3.6.2 causes leaking of thumbnails when requesting the Android content provider although the lock protection... |
| 2.3 | 2019-07-30 | CVE-2019-10165 | cve | OpenShift Container Platform before version 4.1.3 writes OAuth tokens in plaintext to the audit logs for the Kubernetes API server and OpenShift API server. A user with sufficie... |
| 3.3 | 2019-07-30 | CVE-2019-1552 | cve | OpenSSL has internal defaults for a directory tree where it can find a configuration file as well as certificates used for verification in TLS. This directory is most commonly r... |
| 3.3 | 2019-07-30 | CVE-2019-14414 | cve | In cPanel before 78.0.2, a Userdata cache temporary file can conflict with domains (SEC-478). |
| 3.3 | 2019-07-30 | CVE-2019-14412 | cve | Maketext in cPanel before 78.0.2 allows format-string injection in the DCV check_domains_via_dns UAPI (SEC-474). |
| 3.3 | 2019-07-30 | CVE-2019-14410 | cve | Maketext in cPanel before 78.0.2 allows format-string injection in the Email store_filter UAPI (SEC-472). |
| 2.7 | 2019-07-30 | CVE-2019-14407 | cve | cPanel before 78.0.2 reveals internal data to OpenID providers (SEC-415). |
| 3.3 | 2019-07-30 | CVE-2019-14402 | cve | cPanel before 78.0.18 unsafely determines terminal capabilities by using infocmp (SEC-481). |
| Page(s) : 1 ... 132 133 134 135 136 137 138 139 140 141 [142] 143 144 145 146 147 148 149 150 151 152 ... | Result(s) : 8819 |
