| Page(s) : 1 ... 133 134 135 136 137 138 139 140 141 142 [143] 144 145 146 147 148 149 150 151 152 153 ... | Result(s) : 9850 |
Alerts
| DATE | NAME | CATEGORIES | DETAIL | |
|---|---|---|---|---|
| 2.7 | 2019-08-05 | CVE-2017-18466 | cve | cPanel before 62.0.17 does not properly recognize domain ownership during addition of parked domains to a mail configuration (SEC-228). |
| 3.3 | 2019-08-05 | CVE-2019-14671 | cve | Firefly III 4.7.17.3 is vulnerable to local file enumeration. An attacker can enumerate local files due to the lack of protocol scheme sanitization, such as for file:/// URLs. T... |
| 3.3 | 2019-08-05 | CVE-2019-10994 | cve | Processing a specially crafted project file in LAquis SCADA 4.3.1.71 may trigger an out-of-bounds read, which may allow an attacker to obtain sensitive information. The attacker... |
| 3.3 | 2019-08-05 | CVE-2016-10772 | cve | cPanel before 60.0.25 does not enforce feature-list restrictions when calling the multilang adminbin (SEC-168). |
| 2.7 | 2019-08-02 | CVE-2017-18395 | cve | cPanel before 68.0.15 does not block a username of ssl (SEC-328). |
| 2.7 | 2019-08-02 | CVE-2017-18426 | cve | cPanel before 66.0.2 allows resellers to read other accounts' domain log files (SEC-288). |
| 3.3 | 2019-08-02 | CVE-2017-18427 | cve | In cPanel before 66.0.2, weak log-file permissions can occur after account modification (SEC-289). |
| 3.8 | 2019-08-02 | CVE-2017-18384 | cve | cPanel before 68.0.15 allows jailed accounts to restore files that are outside of the jail (SEC-310). |
| 2.5 | 2019-08-02 | CVE-2017-18391 | cve | cPanel before 68.0.15 allows attackers to read backup files because they are world-readable during a short time interval (SEC-323). |
| 3.3 | 2019-08-02 | CVE-2017-18424 | cve | In cPanel before 66.0.2, the Apache HTTP Server configuration file is changed to world-readable when rebuilt (SEC-274). |
| 2.5 | 2019-08-02 | CVE-2017-18428 | cve | In cPanel before 66.0.2, Apache HTTP Server domlogs become temporarily world-readable during log processing (SEC-290). |
| 2.7 | 2019-08-02 | CVE-2017-18394 | cve | cPanel before 68.0.15 does not have a sufficient list of reserved usernames (SEC-327). |
| 2.5 | 2019-08-02 | CVE-2017-18425 | cve | In cPanel before 66.0.2, the cpdavd_error_log file can be created with weak permissions (SEC-280). |
| 3.5 | 2019-08-02 | CVE-2017-18436 | cve | cPanel before 64.0.21 allows demo accounts to read files via a Fileman::getfileactions API2 call (SEC-239). |
| 3.3 | 2019-08-02 | CVE-2017-18429 | cve | In cPanel before 66.0.2, Apache HTTP Server SSL domain logs can persist on disk after an account termination (SEC-291). |
| 3.3 | 2019-08-02 | CVE-2017-18458 | cve | cPanel before 62.0.17 allows file overwrite when renaming an account (SEC-219). |
| 2.7 | 2019-08-02 | CVE-2017-18455 | cve | In cPanel before 62.0.17, addon domain conversion did not require a package for resellers (SEC-208). |
| 2.7 | 2019-08-02 | CVE-2017-18393 | cve | cPanel before 68.0.15 does not block a username of postmaster, which might allow reception of private e-mail (SEC-326). |
| 2.7 | 2019-08-02 | CVE-2017-18382 | cve | cPanel before 68.0.15 allows use of an unreserved e-mail address in DNS zone SOA records (SEC-306). |
| 2 | 2019-08-02 | CVE-2017-18392 | cve | cPanel before 68.0.15 allows collisions because PostgreSQL databases can be assigned to multiple accounts (SEC-325). |
| Page(s) : 1 ... 133 134 135 136 137 138 139 140 141 142 [143] 144 145 146 147 148 149 150 151 152 153 ... | Result(s) : 9850 |
