cPanel before 68.0.27 does not validate database and dbuser names during renames (SEC-321).

cPanel before 68.0.27 allows attackers to read the SRS secret via exim.conf (SEC-308).

cPanel before 55.9999.141 allows a POP/IMAP cPHulk bypass via account name munging (SEC-107).

cPanel before 55.9999.141 allows account-suspension bypass via ftp (SEC-105).

cPanel before 55.9999.141 mishandles username-based blocking for PRE requests in cPHulkd (SEC-104).

cPanel before 55.9999.141 allows FTP cPHulk bypass via account name munging (SEC-102).

cPanel before 55.9999.141 does not perform as two-factor authentication check when possessing another ac

cPanel before 55.9999.141 allows ACL bypass for AppConfig applications via magic_revision (SEC-100).

cPanel before 55.9999.141 allows arbitrary file-read operations because of a multipart form processing e

cPanel before 55.9999.141 allows attackers to bypass a Security Policy by faking static documents (SEC-9

GnuCOBOL 2.2 has a buffer overflow in cb_evaluate_expr in cobc/field.c via crafted COBOL source code.

cPanel before 70.0.23 does not prevent e-mail account suspensions from being applied to unowned accounts

cPanel before 70.0.23 exposes Apache HTTP Server logs after creation of certain domains (SEC-406).

cPanel before 70.0.23 allows demo accounts to execute code via the Landing Page (SEC-405).

cPanel before 70.0.23 allows .htaccess restrictions bypass when Htaccess Optimization is enabled (SEC-40

cPanel before 70.0.23 allows jailshell escape because of incorrect crontab parsing (SEC-382).

cPanel before 70.0.23 allows local privilege escalation via the WHM Locale XML Upload interface (SEC-380

cPanel before 70.0.23 allows local privilege escalation via the WHM Legacy Language File Upload interfac

cPanel before 11.54.0.4 allows certain file-read operations in bin/setup_global_spa-m_filter.pl (SEC-74).

cPanel before 11.54.0.4 allows arbitrary code execution during locale duplication (SEC-72).

cPanel before 11.54.0.4 allows SQL injection in bin/horde_update_use-rnames (SEC-71).

cPanel before 11.54.0.4 allows arbitrary file-read operations via the bin/fmq script (SEC-70).

cPanel before 55.9999.141 allows arbitrary file-read operations during authentication with caldav (SEC-1

cPanel before 11.54.0.0 allows unauthorized zone modification via the WHM API (SEC-66).

cPanel before 71.9980.37 allows e-mail injection during cPAddons moderation (SEC-396).

It was found that icedtea-web though 1.7.2 and 1.8.2 did not properly sanitize paths from <jar/> element

Crypto++ 8.3.0 and earlier contains a timing side channel in ECDSA signature generation. This allows a l

An issue was discovered that affects the following versions of Rancher: v2.0.0 through v2.0.13, v2.1.0 t

Openbravo ERP before 3.0PR19Q1.3 is affected by Directory Traversal. This vulnerability could allow remo

Cisco Aironet 1000 Series and 1500 Series Lightweight Access Points before 3.2.185.0, and 4.0.x before 4

"Bluetana," a new mobile app that looks for Bluetooth-based payment card skimmers hidden inside gas pump

Most Microsoft Windows (ab)users probably welcome the monthly ritual of applying security updates about

The U.S. Securities and Exchange Commission (SEC) is investigating a security failure on the Web site of

A ransomware outbreak that hit QuickBooks cloud hosting firm iNSYNQ in mid-July appears to have started

Incessantly annoying and fraudulent robocalls. Corrupt wireless company employees taking hundreds of tho

If you bank online and choose weak or re-used passwords, there's a decent chance your account could be p

On Monday, a former Amazon employee was arrested and charged with stealing more than 100 million consume

Federal prosecutors this week charged a Seattle woman with stealing data from more than 100 million cred

Marcus Hutchins, the "accidental hero" who helped arrest the spread of the global WannaCry ransomware ou

Much has been written about the need to further secure our elections, from ensuring the integrity of vot

Introduction This research project is part of my Master’s program at the University of San Fran

By 2025, it is estimated that there will be over 64 billion IoT devices around the world, with an i

Browsing privately ensures that no one spies on what you do online. Thanks to the tech growth that

Deepfakes are the latest moral panic, but the issues about consent, fake news, and political manipu

Introduced to the market nearly two decades ago, Virtual Private Networks (VPNs) are a uniquely end

With access to more resources than ever before, cybercriminals are rapidly scaling their operations

Across the board, security teams of every industry, organization size, and maturity level share at l

Here is a short communication tip that may help you in your daily interactions. How often have you

The elderly population in the U.S has been on a steady incline for the past few decades. With more