Creditee: Rack911

Known Contact Information:

  • None at this time

Known Affiliations:

Disclosed Vulnerabilities (134):

Disc. DateOSVDB IDCVEIDTitle
2014-04-10 105764 LVE Manager Plugin for cPanel CageFS PHP Selector Unspecified Remote Command Execution
2014-04-10 105765 LVE Manager Plugin for cPanel lvechart.cgi Unspecified Remote Command Execution
2014-03-31 105338 cPanel WHM activate_remote_nameservers.cgi Crafted Parameter Newline Handling Remote Command Execution
2014-03-31 105318 cPanel WHM /cgi/cpaddons_report.pl Unspecified Stored XSS
2014-03-31 105232 cPanel WHM Update Analysis Tarball Insecure File Permissions Local Information Disclosure
2014-03-31 105231 cPanel WHM Modify Account Interface Various Settings Improper ACLs Sub-accounts Restriction Bypass
2014-03-31 105304 cPanel WHM /usr/local/cpanel/logs Log Files Insecure Permissions Local Information Disclosure
2014-03-13 104610 HostBill Chat Generate Code Configuration Page Configuration Manipulation CSRF
2014-03-13 104503 Webmin PHP Config File Hardlinking Local File Disclosure
2014-03-13 104504 Webmin Webalizer / AwStats Statistics Files Hardlinking Local File Disclosure
2014-03-13 104609 HostBill Chat Generate Code Configuration Page Unspecified XSS
2014-03-07 104454 ArcticDesk Custom Module Path Traversal Remote File Access
2014-03-04 104105 HostBill Email Templates Configuration Unspecified XSS
2014-03-04 104106 HostBill Email Templates Configuration Manipulation CSRF
2014-02-25 103777 HostBill Staff Tickets Unspecified SQL Injection
2014-02-19 103600 InterWorx Control Panel Crafted Shell Command Handling iworx User Local MySQL Password Disclosure
2014-02-14 103360 Vision HelpDesk Add Contact Function Unspecified Arbitrary Account Hijacking
2014-02-14 103361 Vision HelpDesk Profile Function Unspecified Arbitrary Account Hijacking
2014-02-14 103362 Vision HelpDesk Unspecified Stored XSS
2014-02-14 103415 cPanel WHM Backup Archive Permission Weakness Local Plaintext MySQL Password Disclosure
2014-02-05 102997 cPanel WHM Modifyacct Function NULL Byte Handling Account Interface Manipulation
2014-02-05 102998 cPanel WHM DNS Cluster System Newline Data Injection Remote Command Execution
2014-02-05 102999 cPanel WHM /scripts5/wwwacctform Multiple Parameter cpuser File Manipulation Remote Account Takeover
2014-02-03 103252 R-fx Networks Networks BFD Log Message Spoofing Arbitrary IP Block Local DoS
2014-02-02 103299 ConfigServer Security & Firewall Log Message Spoofing Arbitrary IP Block Local DoS
2014-02-02 103300 ConfigServer Security & Firewall SSH Log Message Spoofing Weakness
2014-01-24 102569 Vision HelpDesk View Article Feature SQL Injection
2014-01-24 102727 BetterLinux with cPanel Unspecified Remote File Disclosure
2014-01-24 102726 BetterLinux with cPanel Unspecified Remote Command Execution
2014-01-21 102447 CloudFlare Plugin for cPanel Local Cloudflare_Data.yaml File Deletion
2014-01-15 102280 Softaculous Upgrade Installations Feature Unspecified Local Privilege Escalation
2014-01-06 101949 HostBill Ticket Submission Hidden Department Name Disclosure
2014-01-06 101950 HostBill Arbitrary Client Estimate Enumeration Remote Information Disclosure
2014-01-02 101698 Softaculous Admin Import Utility Unspecified Local Privilege Escalation
2013-12-23 101486 CloudLinux CageFS postmodifyacct Script Unspecified Input Validation Failure Privilege Escalation
2013-12-20 101450 HostBill Access Control List (ACL) Multiple Admin Access Restriction Bypasses
2013-12-18 101374 cPanel WHM Edit DNS Zone Interface Crafted DNS Zone Entry Handling Error Message Remote Partial File Disclosure
2013-12-18 101361 cPanel WHM Logaholic Session File Insecure Permissions Local Privilege Escalation
2013-12-18 101367 cPanel WHM Insecure Permissions Database Grant Files Local Disclosure
2013-12-18 101366 cPanel WHM Backup Archive Crafted Grant Table Handling Local Privilege Escalation
2013-12-14 101030 2013-7188 HostBill Unspecified XSS
2013-12-06 100684 ClientExec Ticket Submission Crafted Request Product Information Disclosure
2013-11-27 100452 ClientExec Unspecified Input Handling Welcome Letter Issue
2013-11-27 100451 ClientExec Unspecified Input Handling Article Rating System Issue
2013-11-27 100450 ClientExec Plugin / Snapin System Unspecified SQL Injection
2013-11-27 100449 ClientExec Admin Panel Multiple Unspecified XSS
2013-11-23 100278 Installatron Plugin for DirectAdmin Insecure Temporary File Race Condition Symlink Arbitrary File Overwrite
2013-11-20 100095 Soholaunch Pro Plugin for WHM Installation Unspecified File Takeover Local Privilege Escalation
2013-11-20 100270 Varnish Plugin for cPanel Disable Varnish Symlink Race Condition Privilege Escalation
2013-11-20 100097 Soholaunch Pro Plugin for WHM Update Process Unspecified File Takeover Local Privilege Escalation
2013-11-20 100269 Varnish Plugin for cPanel Installation Weakness Arbitrary Site Redirect
2013-11-20 100268 Varnish Plugin for cPanel Installation Process Unspecified Arbitrary File Access
2013-11-18 100171 A-AST Bulk DNS TTL Changer Plugin for cPanel WHM Unspecified Input Handling DNS TTL Modification
2013-11-18 100170 A-AST Bulk DNS TTL Changer Plugin for cPanel WHM Insecure Permission Local File Manipulation
2013-10-31 99218 LiteSpeed Web Server (LSWS) /tmp/lshttpd Crafted File Execution Handling Local Privilege Escalation
2013-10-31 99219 LiteSpeed Web Server (LSWS) Insecure Temporary File Symlink Arbitrary File Access
2013-10-26 99026 cPanel WHM Configure Customer Contact Interface Jailshell Restrictions Bypass Remote Privilege Escalation
2013-10-25 98977 Installatron Plugin for DirectAdmin cURL Output Manipulation Remote Privilege Escalation
2013-10-22 98929 CloudFlare Plugin for cPanel Unspecified Arbitrary File Write Local Privilege Escalation
2013-10-15 98670 CloudFlare Plugin for cPanel Unspecified Arbitrary Command Execution
2013-10-11 98435 SpamExperts Plugin for cPanel Unspecified Local Privilege Escalation
2013-10-08 98310 Idera Server Backup Manager Send to Agent Feature Arbitrary File Overwrite
2013-10-08 98309 Idera Server Backup Manager Scheduled Backup Unspecified Arbitrary File Access
2013-10-08 98311 Idera Server Backup Manager Restore to Agent Feature Arbitrary User Backup Manipulation
2013-10-07 98307 DirectAdmin Reseller Backup System Symlink Arbitrary File Overwrite
2013-10-07 98306 DirectAdmin Backup System Unspecified Symlink Arbitrary File Overwrite Local DoS
2013-10-07 98305 DirectAdmin Backup System Unspecified Arbitrary Privileged File Access
2013-10-07 98304 DirectAdmin Backup System MySQL Database Restoration Arbitrary Command Execution Local Privilege Escalation
2013-09-23 97626 WHMreseller Backup Upload Local Privilege Escalation
2013-09-18 97582 WHMPHP IP Unblocker (CSF) Feature Unspecified Local Privilege Escalation
2013-09-18 97581 WHMPHP root User Password Hash Local Disclosure
2013-09-18 97580 WHMPHP Unspecified Local File Inclusion
2013-09-11 97361 WHMreseller Download Local Backup Feature Unspecified Arbitrary File Access
2013-09-11 97362 WHMXtra Reseller UI Multiple Unspecified Local Privilege Escalation
2013-09-11 97363 WHMXtra Reseller UI Multiple Unspecified Race Condition Local Privilege Escalation
2013-09-03 96904 RVSiteBuilder Unspecified Hardlink Arbitrary File Overwrite Local DoS
2013-09-03 96903 RVSiteBuilder Unspecified Hardlink Arbitrary File Manipulation Local Privilege Escalation
2013-09-03 96902 RVSkin Unspecified Hardlink Arbitrary File Manipulation Local Privilege Escalation
2013-09-03 96901 RVSkin Nightly Update Hardlink Arbitrary File Manipulation Local Privilege Escalation
2013-08-30 96899 CloudLinux for Plesk Resource Usage Feature Arbitrary psaadm Owned File Access
2013-08-30 96898 CloudLinux for Plesk PHP Selector Feature Arbitrary Command Execution
2013-08-30 96897 CloudLinux for Plesk chart.php Unauthenticated Remote Command Execution
2013-08-30 96896 CloudLinux for Plesk Admin CageFS Feature Unauthenticated Remote Command Execution
2013-08-29 96895 cPanel cPAddons Site Software Subsystem Install Logic Unspecified Arbitrary Code Execution
2013-08-29 96892 cPanel Account Transfer Permission Weakness Local Information Disclosure
2013-08-29 96891 cPanel Upload Locale XML Feature Arbitrary File Manipulation
2013-08-29 96890 cPanel WHM Unsuspend Function Arbitrary Account Suspension Status Manipulation
2013-08-29 96889 cPanel Multiple Feature httpd.conf Manipulation Local DoS
2013-08-29 96888 cPanel Rearrange an Account Feature Unspecified Arbitrary File Disclosure
2013-08-29 96887 cPanel /var/cpanel/sessions Plaintext Credential Local Disclosure
2013-08-12 96427 cPremote Daily Backup Feature Arbitrary File Ownership Manipulation Local Privilege Escalation
2013-08-09 96173 CloudLinux CageFS Unspecified Arbitrary File Content Local Disclosure
2013-07-24 96244 ArcticDesk Unspecified Admin User Creation CSRF
2013-07-24 96243 ArcticDesk Trouble Ticket Attachment Field File Upload Arbitrary Code Execution
2013-07-24 96242 ArcticDesk Multiple Unspecified XSS
2013-07-22 96167 SecPanel Unspecified User Plaintext Local Password Disclosure
2013-07-18 96163 cPanel WHM Unspecified Arbitrary DNS Zone Modification
2013-07-18 96164 cPanel WHM Unspecified Arbitrary Domain Manipulation
2013-07-18 96165 cPanel WHM Purchase and Install an SSL Certificate Feature Arbitrary File Overwrite
2013-07-18 96166 cPanel WHM Suspend Function Arbitrary Account Lockout Local DoS
2013-07-08 95013 InterWorx Htaccess Feature Symlink Local Privilege Escalation
2013-07-08 95012 InterWorx Backup System Hardlink Crafted Archive Arbitrary File Access
2013-07-08 95371 InterWorx Import Feature Symlink Archive Upload Arbitrary File Overwrite
2013-06-26 94906 WHMXtra Installation sudo Permission Modification Local Privilege Escalation
2013-06-24 94903 RVSkin rvwrapper Arbitrary cPanel Account Manipulation
2013-06-24 94905 Virtualizor Unspecified SQL Injection
2013-06-24 94904 RVSiteBuilder Plugin for cPanel Unspecified Symlink Local Privilege Escalation
2013-06-24 94902 RVSiteBuilder Plugin for cPanel Unspecified Hardlink Arbitrary File Access
2013-06-19 94913 InterWorx Secondary Domain Addition Symlink Local Privilege Escalation
2013-06-19 94900 Virtualizor Arbitrary Admin Account Creation CSRF
2013-06-19 94899 DirectAdmin Backup System Unspecified Email Account Function Symlink Local Privilege Escalation
2013-06-19 94898 DirectAdmin Backup System Unspecified Symlink Arbitrary File Manipulation Local Privilege Escalation
2013-06-19 94914 InterWorx SiteWorx Backup System Symlink Arbitrary File Manipulation Local Privilege Escalation
2013-06-17 94896 ZamFoo Multiple File Permission Weakness Remote DoS
2013-06-17 94897 CloudLinux Unspecified Command Execution Privielge Escalation
2013-06-12 94427 WHMXtra Ultimate Pro Cpanel Xtra Plugin Arbitrary File Manipulation
2013-06-11 96857 cPanel Reseller Account Creation Access Restriction Bypass
2013-06-11 94884 cPanel Web Host Manager (WHM) locale Function Privilege Escalation
2013-06-10 94883 Installatron Import Feature Unspecified Arbitrary Command Execution
2013-06-03 94874 WHMXtra Unspecified Directory Permission Weakness Local Privilege Escalation
2013-06-02 94333 Varnish Plugin for cPanel Advanced Configuration Page Remote Privilege Escalation
2013-05-30 94334 WHMXtra Ultimate Pro Multiple Installation Files Remote Privilege Escalation
2013-05-28 94912 InterWorx lockmail Binary (maildrop) Permission Weakness Local Privilege Escalation
2013-05-28 94872 InterWorx Import / Restore Feature Crafted Archive Restoration Handling Symlink Local Arbitrary File Access
2013-05-28 94871 InterWorx Backup System Hardlink Arbitrary File Access
2013-05-28 94870 InterWorx makemime Binary (maildrop) Hardlink Arbitrary File Access
2013-05-22 94868 cPanel Restore a Full Backup/cpmove File Feature Crafted Archive Restoration Symlink Arbitrary File Access
2013-05-21 94865 cPremote Plugin for cPanel Unauthorized User Backup Service Access
2013-05-21 94864 cPnginx Plugin for cPanel nginx Configuration Manipulation Arbitrary File Access
2013-05-20 94861 Parallels Plesk Website Copy Feature Hardlink Arbitrary File Access
2013-05-13 94859 cPanel /scripts2/ssh_doaddkey Arbitrary SSH Key Overwrite DoS
2013-05-07 94858 Softaculous Unspecified Local Privilege Escalation
2013-05-06 94857 Softaculous Error Page Traversal Arbitrary File Access / Deletion
2013-05-06 94856 Softaculous index.live.php download Parameter Traversal Arbitrary File Access

The database information may change without any notice. Use of the information constitutes acceptance for use in an AS IS condition, and there are NO warranties, implied or otherwise, with regard to this information or its use. Any use of this information is at the user's risk. In no event shall the copyright holder or distributor (OSVDB or OSF) be held liable for any damages whatsoever arising out of or in connection with the use or spread of this information.

© Copyright 2002 - 2014 Open Sourced Vulnerability Database (OSVDB), All Rights Reserved.
Privacy Statement - Terms of Use