CPANEL-34212 Summary Live Transfer causes email accounts to not require a password on the source server. Security Rating cPanel has assigned this vulnerability a CVSSv3 score of 5.6 – CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:L/A:L Description Previ…
cPanel Unscheduled TSR-2020-0006 Full Disclosure Read More »
cPanel has an unscheduled release for version 90 of cPanel & WHM. This update provides a targeted change to address a security concern with the cPanel & WHM product. This is currently available to all customers via the standard update system. c…
cPanel Unscheduled TSR-2020-0006 Announcement Read More »
SEC-566 Summary Self-XSS vulnerability in the WHM Edit DNS Zone interface. Security Rating cPanel has assigned this vulnerability a CVSSv3 score of 4.7 CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:C/C:L/I:L/A:N Description The return URL argument supplied to the Edi…
cPanel TSR-2020-0005 Full Disclosure Read More »
SEC-566 Summary Self-XSS vulnerability in the WHM Edit DNS Zone interface. Security Rating cPanel has assigned this vulnerability a CVSSv3 score of 4.7 CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:C/C:L/I:L/A:N Description The return URL argument supplied to the Edi…
cPanel TSR-2020-0005 Full Disclosure Read More »
cPanel has released new builds for all public update tiers. These updates provide targeted changes to address security concerns with the cPanel & WHM product. These builds are currently available to all customers via the standard update system. cPa…
cPanel TSR-2020-0005 Announcement Read More »
SEC-488 Summary Code execution due to faulty file extension dispatching. Security Rating cPanel has assigned this vulnerability a CVSSv3 score of 8.8 CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H Description cPanel & WHM’s cpsrvd daemon did no…
cPanel TSR-2020-0004 Full Disclosure Read More »
cPanel has released new builds for all public update tiers. These updates provide targeted changes to address security concerns with the cPanel & WHM product. These builds are currently available to all customers via the standard update system. cPa…
cPanel TSR-2020-0004 Announcement Read More »
We are happy to announce that cPanel, L.L.C. has released an update for EasyApache 4! Take a look at some highlights below, and then join us on Discord or Reddit to talk about this update and much more. July 1 scl-ruby34-rubygem-rac…
EasyApache 4 July 1 Release Read More »
WordPress 5.4.2 is now available! This security and maintenance release features 22 fixes and enhancements. Plus, it adds a number of security fixes—see the list below. These bugs affect WordPress versions 5.4.1 and earlier; version 5.4.2 fixes them, so you’ll want to upgrade. If you haven’t yet updated to 5.4, there are also updated versions […]
WordPress 5.4.2 Security and Maintenance Release Read More »
SEC-485 Summary Remote code execution via Exim filter path handling. Security Rating cPanel has assigned this vulnerability a CVSSv3 score of 9.9 CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H Description The handling of file paths constructed from email…
cPanel TSR-2020-0003 Full Disclosure Read More »
