Search

Use the Query Builder to create your own search query, or check out the documentation to learn the search syntax.

Search Examples

CVEs in KEV CVEs with EPSS >= 80% Crit. Microsoft High Apache SQL Injection (CWE-89) Linux Kernel High (CVSS 3.1) Apache Struts RCE (Remote Code Execution) XSS (CWE-79) Critical (CVSS 4.0) CVEs to check

Search Results (11023 CVEs found)

Export CSV
CVE Vendors Products Updated CVSS v3.1
CVE-2016-10860 1 Cpanel 1 Cpanel 2024-11-21 N/A
cPanel before 11.54.0.0 allows unauthorized zone modification via the WHM API (SEC-66).
CVE-2016-10859 1 Cpanel 1 Cpanel 2024-11-21 N/A
cPanel before 11.54.0.0 allows unauthorized password changes via Webmail API commands (SEC-65).
CVE-2016-10857 1 Cpanel 1 Cpanel 2024-11-21 N/A
cPanel before 11.54.0.0 allows a bypass of the e-mail sending limit (SEC-60).
CVE-2016-10856 1 Cpanel 1 Cpanel 2024-11-21 N/A
cPanel before 11.54.0.0 allows subaccounts to discover sensitive data through comet feeds (SEC-29).
CVE-2016-10852 1 Cpanel 1 Cpanel 2024-11-21 N/A
cPanel before 11.54.0.4 lacks ACL enforcement in the AppConfig subsystem (SEC-85).
CVE-2016-10848 1 Cpanel 1 Cpanel 2024-11-21 N/A
cPanel before 11.54.0.4 allows arbitrary file-overwrite operations in scripts/quotacheck (SEC-81).
CVE-2016-10838 1 Cpanel 1 Cpanel 2024-11-21 N/A
cPanel before 11.54.0.4 allows arbitrary file-read operations via the bin/fmq script (SEC-70).
CVE-2016-10836 1 Cpanel 1 Cpanel 2024-11-21 N/A
cPanel before 55.9999.141 allows arbitrary file-read operations during authentication with caldav (SEC-108).
CVE-2016-10835 1 Cpanel 1 Cpanel 2024-11-21 N/A
cPanel before 55.9999.141 allows a POP/IMAP cPHulk bypass via account name munging (SEC-107).
CVE-2016-10833 1 Cpanel 1 Cpanel 2024-11-21 N/A
cPanel before 55.9999.141 mishandles username-based blocking for PRE requests in cPHulkd (SEC-104).
CVE-2016-10832 1 Cpanel 1 Cpanel 2024-11-21 N/A
cPanel before 55.9999.141 allows FTP cPHulk bypass via account name munging (SEC-102).
CVE-2016-10831 1 Cpanel 1 Cpanel 2024-11-21 N/A
cPanel before 55.9999.141 does not perform as two-factor authentication check when possessing another account (SEC-101).
CVE-2016-10830 1 Cpanel 1 Cpanel 2024-11-21 N/A
cPanel before 55.9999.141 allows ACL bypass for AppConfig applications via magic_revision (SEC-100).
CVE-2016-10826 1 Cpanel 1 Cpanel 2024-11-21 N/A
cPanel before 55.9999.141 allows attackers to bypass Two Factor Authentication via DNS clustering requests (SEC-93).
CVE-2016-10820 1 Cpanel 1 Cpanel 2024-11-21 N/A
cPanel before 55.9999.141 allows daemons to access their controlling TTYs (SEC-31).
CVE-2016-10802 1 Cpanel 1 Cpanel 2024-11-21 N/A
cPanel before 58.0.4 allows code execution in the context of other user accounts through the PHP CGI handler (SEC-142).
CVE-2016-10799 1 Cpanel 1 Cpanel 2024-11-21 N/A
cPanel before 58.0.4 does not set the Pear tmp directory during a PHP installation (SEC-137).
CVE-2016-10792 1 Cpanel 1 Cpanel 2024-11-21 N/A
cPanel before 59.9999.145 allows code execution in the context of other accounts via mailman list archives (SEC-141).
CVE-2016-10734 1 Projectsend 1 Projectsend 2024-11-21 N/A
ProjectSend (formerly cFTP) r582 allows Insecure Direct Object Reference via includes/actions.log.export.php.
CVE-2016-10732 1 Projectsend 1 Projectsend 2024-11-21 N/A
ProjectSend (formerly cFTP) r582 allows authentication bypass via a direct request for users.php, home.php, edit-file.php?file_id=1, or process-zip-download.php, or add_user_form_* parameters to users-add.php.