Search

Find a vulnerability

Search criteria Use this form to refine search results.
Full-text search supports keyword queries with ranking and filtering.
You can combine vendor, product, and sources to narrow results.
Enable “Apply ordering” to sort by date instead of relevance.

    34 vulnerabilities by Webpros

    CVE-2026-56843 (GCVE-0-2026-56843)

    Vulnerability from nvd – Published: 2026-07-08 00:15 – Updated: 2026-07-08 13:04
    VLAI
    Summary
    Incorrect authorization in the XML-RPC API of WebPros Plesk before 18.0.78.4 allows a low-privileged authenticated customer to look up domains they do not own, because ownership is enforced only for certain lookup filters and schema validation is bypassed for legacy protocol versions. This results in cross-tenant disclosure of other tenants' FTP credentials stored in cleartext, which can be leveraged to execute code as another tenant's system user.
    SSVC
    Exploitation: none Automatable: no Technical Impact: total
    CISA Coordinator (v2.0.3)
    CWE
    • CWE-522 - Insufficiently Protected Credentials
    Assigner
    Impacted products
    Vendor Product Version
    Webpros Plesk Affected: 10.4 , < 18.0.78.4 (semver)
    Create a notification for this product.
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "metrics": [
              {
                "other": {
                  "content": {
                    "id": "CVE-2026-56843",
                    "options": [
                      {
                        "Exploitation": "none"
                      },
                      {
                        "Automatable": "no"
                      },
                      {
                        "Technical Impact": "total"
                      }
                    ],
                    "role": "CISA Coordinator",
                    "timestamp": "2026-07-08T13:04:03.813528Z",
                    "version": "2.0.3"
                  },
                  "type": "ssvc"
                }
              }
            ],
            "providerMetadata": {
              "dateUpdated": "2026-07-08T13:04:17.023Z",
              "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
              "shortName": "CISA-ADP"
            },
            "title": "CISA ADP Vulnrichment"
          }
        ],
        "cna": {
          "affected": [
            {
              "defaultStatus": "unaffected",
              "product": "Plesk",
              "vendor": "Webpros",
              "versions": [
                {
                  "lessThan": "18.0.78.4",
                  "status": "affected",
                  "version": "10.4",
                  "versionType": "semver"
                }
              ]
            }
          ],
          "descriptions": [
            {
              "lang": "en",
              "value": "Incorrect authorization in the XML-RPC API of WebPros Plesk before 18.0.78.4 allows a low-privileged authenticated customer to look up domains they do not own, because ownership is enforced only for certain lookup filters and schema validation is bypassed for legacy protocol versions. This results in cross-tenant disclosure of other tenants\u0027 FTP credentials stored in cleartext, which can be leveraged to execute code as another tenant\u0027s system user."
            }
          ],
          "metrics": [
            {
              "cvssV3_1": {
                "baseScore": 9.9,
                "baseSeverity": "CRITICAL",
                "vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H",
                "version": "3.1"
              }
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "cweId": "CWE-522",
                  "description": "CWE-522 Insufficiently Protected Credentials",
                  "lang": "en",
                  "type": "CWE"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2026-07-08T00:15:43.120Z",
            "orgId": "36234546-b8fa-4601-9d6f-f4e334aa8ea1",
            "shortName": "hackerone"
          },
          "references": [
            {
              "url": "https://support.plesk.com/hc/en-us/articles/41178305151255-Vulnerability-in-Plesk-XML-API-Cleartext-FTP-Password-Exposure"
            }
          ]
        }
      },
      "cveMetadata": {
        "assignerOrgId": "36234546-b8fa-4601-9d6f-f4e334aa8ea1",
        "assignerShortName": "hackerone",
        "cveId": "CVE-2026-56843",
        "datePublished": "2026-07-08T00:15:43.120Z",
        "dateReserved": "2026-06-23T15:00:03.632Z",
        "dateUpdated": "2026-07-08T13:04:17.023Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.2"
    }

    CVE-2026-48614 (GCVE-0-2026-48614)

    Vulnerability from nvd – Published: 2026-07-06 16:46 – Updated: 2026-07-06 17:39
    VLAI
    Summary
    An improper authorization vulnerability in the Plesk XML API allows an authenticated user to inject arbitrary configuration directives, resulting in arbitrary file write as root and full privilege escalation on the underlying server.
    SSVC
    Exploitation: none Automatable: no Technical Impact: total
    CISA Coordinator (v2.0.3)
    CWE
    Assigner
    Impacted products
    Vendor Product Version
    WebPros Plesk Affected: 0 , < 18.0.78 (semver)
    Create a notification for this product.
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "metrics": [
              {
                "other": {
                  "content": {
                    "id": "CVE-2026-48614",
                    "options": [
                      {
                        "Exploitation": "none"
                      },
                      {
                        "Automatable": "no"
                      },
                      {
                        "Technical Impact": "total"
                      }
                    ],
                    "role": "CISA Coordinator",
                    "timestamp": "2026-07-06T17:38:57.574170Z",
                    "version": "2.0.3"
                  },
                  "type": "ssvc"
                }
              }
            ],
            "providerMetadata": {
              "dateUpdated": "2026-07-06T17:39:05.008Z",
              "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
              "shortName": "CISA-ADP"
            },
            "title": "CISA ADP Vulnrichment"
          }
        ],
        "cna": {
          "affected": [
            {
              "defaultStatus": "unaffected",
              "product": "Plesk",
              "vendor": "WebPros",
              "versions": [
                {
                  "lessThan": "18.0.78",
                  "status": "affected",
                  "version": "0",
                  "versionType": "semver"
                }
              ]
            }
          ],
          "descriptions": [
            {
              "lang": "en",
              "value": "An improper authorization vulnerability in the Plesk XML API allows an authenticated user to inject arbitrary configuration directives, resulting in arbitrary file write as root and full privilege escalation on the underlying server."
            }
          ],
          "metrics": [
            {
              "cvssV3_1": {
                "baseScore": 9.9,
                "baseSeverity": "CRITICAL",
                "vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H",
                "version": "3.1"
              }
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "cweId": "CWE-94",
                  "description": "CWE-94 Code Injection",
                  "lang": "en",
                  "type": "CWE"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2026-07-06T16:46:05.644Z",
            "orgId": "36234546-b8fa-4601-9d6f-f4e334aa8ea1",
            "shortName": "hackerone"
          },
          "references": [
            {
              "url": "https://support.plesk.com/hc/en-us/articles/41171817973143-Vulnerability-in-Plesk-XML-API"
            }
          ]
        }
      },
      "cveMetadata": {
        "assignerOrgId": "36234546-b8fa-4601-9d6f-f4e334aa8ea1",
        "assignerShortName": "hackerone",
        "cveId": "CVE-2026-48614",
        "datePublished": "2026-07-06T16:46:05.644Z",
        "dateReserved": "2026-05-22T15:00:09.276Z",
        "dateUpdated": "2026-07-06T17:39:05.008Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.2"
    }

    CVE-2026-47365 (GCVE-0-2026-47365)

    Vulnerability from nvd – Published: 2026-06-12 02:27 – Updated: 2026-06-12 15:34
    VLAI
    Summary
    Argument injection vulnerability in WordPress Toolkit before 6.11.0 as used in cPanel & WHM, allows remote authenticated users to bypass cross-tenant authorization and execute arbitrary wp-toolkit CLI commands as another account.
    SSVC
    Exploitation: none Automatable: no Technical Impact: total
    CISA Coordinator (v2.0.3)
    CWE
    • CWE-88 - Improper Neutralization of Argument Delimiters in a Command ('Argument Injection')
    Assigner
    Impacted products
    Vendor Product Version
    WebPros WordPress-Toolkit Affected: 0 , < 6.11.0 (semver)
    Create a notification for this product.
    Credits
    Georgii Shutiaev
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "metrics": [
              {
                "other": {
                  "content": {
                    "id": "CVE-2026-47365",
                    "options": [
                      {
                        "Exploitation": "none"
                      },
                      {
                        "Automatable": "no"
                      },
                      {
                        "Technical Impact": "total"
                      }
                    ],
                    "role": "CISA Coordinator",
                    "timestamp": "2026-06-12T15:27:59.051921Z",
                    "version": "2.0.3"
                  },
                  "type": "ssvc"
                }
              }
            ],
            "providerMetadata": {
              "dateUpdated": "2026-06-12T15:34:38.290Z",
              "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
              "shortName": "CISA-ADP"
            },
            "title": "CISA ADP Vulnrichment"
          }
        ],
        "cna": {
          "affected": [
            {
              "defaultStatus": "unaffected",
              "product": "WordPress-Toolkit",
              "vendor": "WebPros",
              "versions": [
                {
                  "lessThan": "6.11.0",
                  "status": "affected",
                  "version": "0",
                  "versionType": "semver"
                }
              ]
            }
          ],
          "credits": [
            {
              "lang": "en",
              "type": "reporter",
              "value": "Georgii Shutiaev"
            }
          ],
          "descriptions": [
            {
              "lang": "en",
              "value": "Argument injection vulnerability in WordPress Toolkit before 6.11.0 as used in cPanel \u0026 WHM, allows remote authenticated users to bypass cross-tenant authorization and execute arbitrary wp-toolkit CLI commands as another account."
            }
          ],
          "metrics": [
            {
              "cvssV3_1": {
                "baseScore": 9.9,
                "baseSeverity": "CRITICAL",
                "vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H",
                "version": "3.1"
              }
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "cweId": "CWE-88",
                  "description": "CWE-88 Improper Neutralization of Argument Delimiters in a Command (\u0027Argument Injection\u0027)",
                  "lang": "en",
                  "type": "CWE"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2026-06-12T02:27:43.397Z",
            "orgId": "36234546-b8fa-4601-9d6f-f4e334aa8ea1",
            "shortName": "hackerone"
          },
          "references": [
            {
              "url": "https://support.cpanel.net/hc/en-us/articles/41004584983703-WP-Toolkit-CVE-2026-47365"
            }
          ]
        }
      },
      "cveMetadata": {
        "assignerOrgId": "36234546-b8fa-4601-9d6f-f4e334aa8ea1",
        "assignerShortName": "hackerone",
        "cveId": "CVE-2026-47365",
        "datePublished": "2026-06-12T02:27:43.397Z",
        "dateReserved": "2026-05-19T15:00:09.320Z",
        "dateUpdated": "2026-06-12T15:34:38.290Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.2"
    }

    CVE-2026-44962 (GCVE-0-2026-44962)

    Vulnerability from nvd – Published: 2026-05-29 15:41 – Updated: 2026-05-29 16:43
    VLAI
    Summary
    Plesk contains an XPath injection vulnerability in the APS Application Catalog search functionality, where user-supplied input is interpolated into XPath queries without proper sanitization. This allows an authenticated, low-privileged user to execute arbitrary operating system commands on the server, resulting in local privilege escalation.
    SSVC
    Exploitation: none Automatable: no Technical Impact: total
    CISA Coordinator (v2.0.3)
    CWE
    • CWE-643 - Improper Neutralization of Data within XPath Expressions ('XPath Injection')
    Assigner
    Impacted products
    Vendor Product Version
    WebPros Plesk Affected: 18.0.75.1 , < 18.0.75.1 (semver)
    Affected: 18.0.76.2 , < 18.0.76.2 (semver)
    Create a notification for this product.
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "metrics": [
              {
                "other": {
                  "content": {
                    "id": "CVE-2026-44962",
                    "options": [
                      {
                        "Exploitation": "none"
                      },
                      {
                        "Automatable": "no"
                      },
                      {
                        "Technical Impact": "total"
                      }
                    ],
                    "role": "CISA Coordinator",
                    "timestamp": "2026-05-29T16:43:11.003611Z",
                    "version": "2.0.3"
                  },
                  "type": "ssvc"
                }
              }
            ],
            "providerMetadata": {
              "dateUpdated": "2026-05-29T16:43:18.000Z",
              "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
              "shortName": "CISA-ADP"
            },
            "title": "CISA ADP Vulnrichment"
          }
        ],
        "cna": {
          "affected": [
            {
              "defaultStatus": "unaffected",
              "product": "Plesk",
              "vendor": "WebPros",
              "versions": [
                {
                  "lessThan": "18.0.75.1",
                  "status": "affected",
                  "version": "18.0.75.1",
                  "versionType": "semver"
                },
                {
                  "lessThan": "18.0.76.2",
                  "status": "affected",
                  "version": "18.0.76.2",
                  "versionType": "semver"
                }
              ]
            }
          ],
          "descriptions": [
            {
              "lang": "en",
              "value": "Plesk contains an XPath injection vulnerability in the APS Application Catalog search functionality, where user-supplied input is interpolated into XPath queries without proper sanitization. This allows an authenticated, low-privileged user to execute arbitrary operating system commands on the server, resulting in local privilege escalation."
            }
          ],
          "metrics": [
            {
              "cvssV3_1": {
                "baseScore": 10,
                "baseSeverity": "CRITICAL",
                "vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H",
                "version": "3.1"
              }
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "cweId": "CWE-643",
                  "description": "CWE-643 Improper Neutralization of Data within XPath Expressions (\u0027XPath Injection\u0027)",
                  "lang": "en",
                  "type": "CWE"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2026-05-29T15:41:23.795Z",
            "orgId": "36234546-b8fa-4601-9d6f-f4e334aa8ea1",
            "shortName": "hackerone"
          },
          "references": [
            {
              "url": "https://support.plesk.com/hc/en-us/articles/38633651286679-Vulnerability-CVE-2026-44962-in-Plesk-s-APS-Catalog"
            }
          ]
        }
      },
      "cveMetadata": {
        "assignerOrgId": "36234546-b8fa-4601-9d6f-f4e334aa8ea1",
        "assignerShortName": "hackerone",
        "cveId": "CVE-2026-44962",
        "datePublished": "2026-05-29T15:41:23.795Z",
        "dateReserved": "2026-05-08T15:00:02.447Z",
        "dateUpdated": "2026-05-29T16:43:18.000Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.2"
    }

    CVE-2026-32999 (GCVE-0-2026-32999)

    Vulnerability from nvd – Published: 2026-05-28 04:01 – Updated: 2026-05-28 13:09
    VLAI
    Summary
    Insufficient character filtering in backup agent signing module on Comet Backup server allows authenticated tenant administrator to execute an arbitrary code on behalf of a privileged user on the affected server and connected devices.
    SSVC
    Exploitation: none Automatable: no Technical Impact: total
    CISA Coordinator (v2.0.3)
    CWE
    Assigner
    Impacted products
    Vendor Product Version
    WebPros Comet Backup Affected: 0 , < 26.4.3 (semver)
    Affected: 0 , < 26.5.0 (semver)
    Create a notification for this product.
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "metrics": [
              {
                "other": {
                  "content": {
                    "id": "CVE-2026-32999",
                    "options": [
                      {
                        "Exploitation": "none"
                      },
                      {
                        "Automatable": "no"
                      },
                      {
                        "Technical Impact": "total"
                      }
                    ],
                    "role": "CISA Coordinator",
                    "timestamp": "2026-05-28T13:09:12.226918Z",
                    "version": "2.0.3"
                  },
                  "type": "ssvc"
                }
              }
            ],
            "providerMetadata": {
              "dateUpdated": "2026-05-28T13:09:20.180Z",
              "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
              "shortName": "CISA-ADP"
            },
            "title": "CISA ADP Vulnrichment"
          }
        ],
        "cna": {
          "affected": [
            {
              "defaultStatus": "unaffected",
              "product": "Comet Backup",
              "vendor": "WebPros",
              "versions": [
                {
                  "lessThan": "26.4.3",
                  "status": "affected",
                  "version": "0",
                  "versionType": "semver"
                },
                {
                  "lessThan": "26.5.0",
                  "status": "affected",
                  "version": "0",
                  "versionType": "semver"
                }
              ]
            }
          ],
          "descriptions": [
            {
              "lang": "en",
              "value": "Insufficient character filtering in backup agent signing module on Comet Backup server allows authenticated tenant administrator to execute an arbitrary code on behalf of a privileged user on the affected server and connected devices."
            }
          ],
          "metrics": [
            {
              "cvssV3_1": {
                "baseScore": 9.1,
                "baseSeverity": "CRITICAL",
                "vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:C/C:H/I:H/A:H",
                "version": "3.1"
              }
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "cweId": "CWE-94",
                  "description": "CWE-94 Code Injection",
                  "lang": "en",
                  "type": "CWE"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2026-05-28T04:01:38.421Z",
            "orgId": "36234546-b8fa-4601-9d6f-f4e334aa8ea1",
            "shortName": "hackerone"
          },
          "references": [
            {
              "url": "https://support.cometbackup.com/hc/en-us/articles/40655100268439--CVE-2026-32999-RCE-on-Comet-Server-via-branding-configuration"
            }
          ]
        }
      },
      "cveMetadata": {
        "assignerOrgId": "36234546-b8fa-4601-9d6f-f4e334aa8ea1",
        "assignerShortName": "hackerone",
        "cveId": "CVE-2026-32999",
        "datePublished": "2026-05-28T04:01:38.421Z",
        "dateReserved": "2026-03-17T15:00:07.747Z",
        "dateUpdated": "2026-05-28T13:09:20.180Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.2"
    }

    CVE-2026-32991 (GCVE-0-2026-32991)

    Vulnerability from nvd – Published: 2026-05-13 22:07 – Updated: 2026-05-14 13:11
    VLAI
    Summary
    Improper authorization checks of team members privileges allow a team member to escalate privileges to the team owner account.
    SSVC
    Exploitation: none Automatable: no Technical Impact: partial
    CISA Coordinator (v2.0.3)
    CWE
    • CWE-863 - Incorrect Authorization
    Assigner
    Impacted products
    Vendor Product Version
    WebPros cPanel Affected: 11.136.0.0 , < 11.136.0.10 (semver)
    Affected: 11.134.0.0 , < 11.134.0.26 (semver)
    Affected: 11.132.0.0 , < 11.132.0.32 (semver)
    Affected: 11.130.0.0 , < 11.130.0.23 (semver)
    Affected: 11.126.0.0 , < 11.126.0.59 (semver)
    Affected: 11.124.0.0 , < 11.124.0.38 (semver)
    Affected: 11.118.0.0 , < 11.118.0.67 (semver)
    Affected: 11.110.0.0 , < 11.110.0.119 (semver)
    Create a notification for this product.
    WebPros WP Squared Affected: 11.136.1.0 , < 11.136.1.12 (semver)
    Create a notification for this product.
    WebPros cPanel (CloudLinux 6, CentOS 6) Affected: 11.110.0.0 , < 11.110.0.118 (semver)
    Create a notification for this product.
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "metrics": [
              {
                "other": {
                  "content": {
                    "id": "CVE-2026-32991",
                    "options": [
                      {
                        "Exploitation": "none"
                      },
                      {
                        "Automatable": "no"
                      },
                      {
                        "Technical Impact": "partial"
                      }
                    ],
                    "role": "CISA Coordinator",
                    "timestamp": "2026-05-14T13:11:15.440259Z",
                    "version": "2.0.3"
                  },
                  "type": "ssvc"
                }
              }
            ],
            "providerMetadata": {
              "dateUpdated": "2026-05-14T13:11:23.622Z",
              "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
              "shortName": "CISA-ADP"
            },
            "title": "CISA ADP Vulnrichment"
          }
        ],
        "cna": {
          "affected": [
            {
              "defaultStatus": "unaffected",
              "product": "cPanel",
              "vendor": "WebPros",
              "versions": [
                {
                  "lessThan": "11.136.0.10",
                  "status": "affected",
                  "version": "11.136.0.0",
                  "versionType": "semver"
                },
                {
                  "lessThan": "11.134.0.26",
                  "status": "affected",
                  "version": "11.134.0.0",
                  "versionType": "semver"
                },
                {
                  "lessThan": "11.132.0.32",
                  "status": "affected",
                  "version": "11.132.0.0",
                  "versionType": "semver"
                },
                {
                  "lessThan": "11.130.0.23",
                  "status": "affected",
                  "version": "11.130.0.0",
                  "versionType": "semver"
                },
                {
                  "lessThan": "11.126.0.59",
                  "status": "affected",
                  "version": "11.126.0.0",
                  "versionType": "semver"
                },
                {
                  "lessThan": "11.124.0.38",
                  "status": "affected",
                  "version": "11.124.0.0",
                  "versionType": "semver"
                },
                {
                  "lessThan": "11.118.0.67",
                  "status": "affected",
                  "version": "11.118.0.0",
                  "versionType": "semver"
                },
                {
                  "lessThan": "11.110.0.119",
                  "status": "affected",
                  "version": "11.110.0.0",
                  "versionType": "semver"
                }
              ]
            },
            {
              "defaultStatus": "unaffected",
              "product": "WP Squared",
              "vendor": "WebPros",
              "versions": [
                {
                  "lessThan": "11.136.1.12",
                  "status": "affected",
                  "version": "11.136.1.0",
                  "versionType": "semver"
                }
              ]
            },
            {
              "defaultStatus": "unaffected",
              "product": "cPanel (CloudLinux 6, CentOS 6)",
              "vendor": "WebPros",
              "versions": [
                {
                  "lessThan": "11.110.0.118",
                  "status": "affected",
                  "version": "11.110.0.0",
                  "versionType": "semver"
                }
              ]
            }
          ],
          "descriptions": [
            {
              "lang": "en",
              "value": "Improper authorization checks of team members privileges allow a team member to escalate privileges to the team owner account."
            }
          ],
          "metrics": [
            {
              "cvssV3_1": {
                "baseScore": 7.1,
                "baseSeverity": "HIGH",
                "vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:H/A:N",
                "version": "3.1"
              }
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "cweId": "CWE-863",
                  "description": "CWE-863 Incorrect Authorization",
                  "lang": "en",
                  "type": "CWE"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2026-05-13T22:07:16.151Z",
            "orgId": "36234546-b8fa-4601-9d6f-f4e334aa8ea1",
            "shortName": "hackerone"
          },
          "references": [
            {
              "url": "https://support.cpanel.net/hc/en-us/articles/40437254183959-Security-CVE-2026-32991-cPanel-WHM-WP2-Security-Update-May-13-2026"
            }
          ]
        }
      },
      "cveMetadata": {
        "assignerOrgId": "36234546-b8fa-4601-9d6f-f4e334aa8ea1",
        "assignerShortName": "hackerone",
        "cveId": "CVE-2026-32991",
        "datePublished": "2026-05-13T22:07:16.151Z",
        "dateReserved": "2026-03-17T15:00:07.746Z",
        "dateUpdated": "2026-05-14T13:11:23.622Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.2"
    }

    CVE-2026-29206 (GCVE-0-2026-29206)

    Vulnerability from nvd – Published: 2026-05-13 22:07 – Updated: 2026-05-14 13:55
    VLAI
    Summary
    Insufficient sanitization of SQL queries in the `sqloptimizer` utility script allows SQL Injections on behalf of the root user if Slow Query logging is enabled.
    SSVC
    Exploitation: none Automatable: no Technical Impact: total
    CISA Coordinator (v2.0.3)
    CWE
    Assigner
    Impacted products
    Vendor Product Version
    WebPros cPanel Affected: 11.136.0.0 , < 11.136.0.10 (semver)
    Affected: 11.134.0.0 , < 11.134.0.26 (semver)
    Affected: 11.132.0.0 , < 11.132.0.32 (semver)
    Affected: 11.130.0.0 , < 11.130.0.23 (semver)
    Affected: 11.126.0.0 , < 11.126.0.59 (semver)
    Affected: 11.124.0.0 , < 11.124.0.38 (semver)
    Affected: 11.118.0.0 , < 11.118.0.67 (semver)
    Affected: 11.110.0.0 , < 11.110.0.119 (semver)
    Affected: 11.102.0.0 , < 11.102.0.42 (semver)
    Affected: 11.94.0.0 , < 11.94.0.31 (semver)
    Affected: 11.30.0.0 , < 11.86.0.44 (semver)
    Create a notification for this product.
    WebPros WP Squared Affected: 11.136.1.0 , < 11.136.1.12 (semver)
    Create a notification for this product.
    WebPros cPanel (CloudLinux 6, CentOS 6) Affected: 11.110.0.0 , < 11.110.0.118 (semver)
    Create a notification for this product.
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "metrics": [
              {
                "other": {
                  "content": {
                    "id": "CVE-2026-29206",
                    "options": [
                      {
                        "Exploitation": "none"
                      },
                      {
                        "Automatable": "no"
                      },
                      {
                        "Technical Impact": "total"
                      }
                    ],
                    "role": "CISA Coordinator",
                    "timestamp": "2026-05-14T13:55:04.846635Z",
                    "version": "2.0.3"
                  },
                  "type": "ssvc"
                }
              }
            ],
            "providerMetadata": {
              "dateUpdated": "2026-05-14T13:55:12.266Z",
              "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
              "shortName": "CISA-ADP"
            },
            "title": "CISA ADP Vulnrichment"
          }
        ],
        "cna": {
          "affected": [
            {
              "defaultStatus": "unaffected",
              "product": "cPanel",
              "vendor": "WebPros",
              "versions": [
                {
                  "lessThan": "11.136.0.10",
                  "status": "affected",
                  "version": "11.136.0.0",
                  "versionType": "semver"
                },
                {
                  "lessThan": "11.134.0.26",
                  "status": "affected",
                  "version": "11.134.0.0",
                  "versionType": "semver"
                },
                {
                  "lessThan": "11.132.0.32",
                  "status": "affected",
                  "version": "11.132.0.0",
                  "versionType": "semver"
                },
                {
                  "lessThan": "11.130.0.23",
                  "status": "affected",
                  "version": "11.130.0.0",
                  "versionType": "semver"
                },
                {
                  "lessThan": "11.126.0.59",
                  "status": "affected",
                  "version": "11.126.0.0",
                  "versionType": "semver"
                },
                {
                  "lessThan": "11.124.0.38",
                  "status": "affected",
                  "version": "11.124.0.0",
                  "versionType": "semver"
                },
                {
                  "lessThan": "11.118.0.67",
                  "status": "affected",
                  "version": "11.118.0.0",
                  "versionType": "semver"
                },
                {
                  "lessThan": "11.110.0.119",
                  "status": "affected",
                  "version": "11.110.0.0",
                  "versionType": "semver"
                },
                {
                  "lessThan": "11.102.0.42",
                  "status": "affected",
                  "version": "11.102.0.0",
                  "versionType": "semver"
                },
                {
                  "lessThan": "11.94.0.31",
                  "status": "affected",
                  "version": "11.94.0.0",
                  "versionType": "semver"
                },
                {
                  "lessThan": "11.86.0.44",
                  "status": "affected",
                  "version": "11.30.0.0",
                  "versionType": "semver"
                }
              ]
            },
            {
              "defaultStatus": "unaffected",
              "product": "WP Squared",
              "vendor": "WebPros",
              "versions": [
                {
                  "lessThan": "11.136.1.12",
                  "status": "affected",
                  "version": "11.136.1.0",
                  "versionType": "semver"
                }
              ]
            },
            {
              "defaultStatus": "unaffected",
              "product": "cPanel (CloudLinux 6, CentOS 6)",
              "vendor": "WebPros",
              "versions": [
                {
                  "lessThan": "11.110.0.118",
                  "status": "affected",
                  "version": "11.110.0.0",
                  "versionType": "semver"
                }
              ]
            }
          ],
          "descriptions": [
            {
              "lang": "en",
              "value": "Insufficient sanitization of SQL queries in the `sqloptimizer` utility script allows SQL Injections on behalf of the root user if Slow Query logging is enabled."
            }
          ],
          "metrics": [
            {
              "cvssV3_1": {
                "baseScore": 8.1,
                "baseSeverity": "HIGH",
                "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:H/A:H",
                "version": "3.1"
              }
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "cweId": "CWE-89",
                  "description": "CWE-89 SQL Injection",
                  "lang": "en",
                  "type": "CWE"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2026-05-13T22:07:16.256Z",
            "orgId": "36234546-b8fa-4601-9d6f-f4e334aa8ea1",
            "shortName": "hackerone"
          },
          "references": [
            {
              "url": "https://support.cpanel.net/hc/en-us/articles/40437213099159-Security-CVE-2026-29206-cPanel-WHM-WP2-Security-Update-May-13-2026"
            }
          ]
        }
      },
      "cveMetadata": {
        "assignerOrgId": "36234546-b8fa-4601-9d6f-f4e334aa8ea1",
        "assignerShortName": "hackerone",
        "cveId": "CVE-2026-29206",
        "datePublished": "2026-05-13T22:07:16.256Z",
        "dateReserved": "2026-03-04T15:00:09.267Z",
        "dateUpdated": "2026-05-14T13:55:12.266Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.2"
    }

    CVE-2026-32993 (GCVE-0-2026-32993)

    Vulnerability from nvd – Published: 2026-05-13 22:06 – Updated: 2026-05-14 13:12
    VLAI
    Summary
    Improper sanitization of the `status` query parameter of the `/unprotected/nova_error` endpoint allows unauthenticated attacker to inject arbitrary HTTP header to the response.
    SSVC
    Exploitation: none Automatable: yes Technical Impact: partial
    CISA Coordinator (v2.0.3)
    CWE
    Assigner
    Impacted products
    Vendor Product Version
    WebPros cPanel Affected: 11.132.0.0 , < 11.132.0.32 (semver)
    Affected: 11.134.0.0 , < 11.134.0.26 (semver)
    Affected: 11.136.0.0 , < 11.136.0.10 (semver)
    Create a notification for this product.
    WebPros WP Squared Affected: 11.132.1.0 , < 11.136.1.12 (semver)
    Create a notification for this product.
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "metrics": [
              {
                "other": {
                  "content": {
                    "id": "CVE-2026-32993",
                    "options": [
                      {
                        "Exploitation": "none"
                      },
                      {
                        "Automatable": "yes"
                      },
                      {
                        "Technical Impact": "partial"
                      }
                    ],
                    "role": "CISA Coordinator",
                    "timestamp": "2026-05-14T13:12:12.439407Z",
                    "version": "2.0.3"
                  },
                  "type": "ssvc"
                }
              }
            ],
            "providerMetadata": {
              "dateUpdated": "2026-05-14T13:12:33.758Z",
              "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
              "shortName": "CISA-ADP"
            },
            "title": "CISA ADP Vulnrichment"
          }
        ],
        "cna": {
          "affected": [
            {
              "defaultStatus": "unaffected",
              "product": "cPanel",
              "vendor": "WebPros",
              "versions": [
                {
                  "lessThan": "11.132.0.32",
                  "status": "affected",
                  "version": "11.132.0.0",
                  "versionType": "semver"
                },
                {
                  "lessThan": "11.134.0.26",
                  "status": "affected",
                  "version": "11.134.0.0",
                  "versionType": "semver"
                },
                {
                  "lessThan": "11.136.0.10",
                  "status": "affected",
                  "version": "11.136.0.0",
                  "versionType": "semver"
                }
              ]
            },
            {
              "defaultStatus": "unaffected",
              "product": "WP Squared",
              "vendor": "WebPros",
              "versions": [
                {
                  "lessThan": "11.136.1.12",
                  "status": "affected",
                  "version": "11.132.1.0",
                  "versionType": "semver"
                }
              ]
            }
          ],
          "descriptions": [
            {
              "lang": "en",
              "value": "Improper sanitization of the `status` query parameter of the `/unprotected/nova_error` endpoint allows unauthenticated attacker to inject arbitrary HTTP header to the response."
            }
          ],
          "metrics": [
            {
              "cvssV3_1": {
                "baseScore": 8.3,
                "baseSeverity": "HIGH",
                "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:L/I:L/A:L",
                "version": "3.1"
              }
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "cweId": "CWE-93",
                  "description": "CWE-93 CRLF Injection",
                  "lang": "en",
                  "type": "CWE"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2026-05-13T22:06:04.114Z",
            "orgId": "36234546-b8fa-4601-9d6f-f4e334aa8ea1",
            "shortName": "hackerone"
          },
          "references": [
            {
              "url": "https://support.cpanel.net/hc/en-us/articles/40437313190295-Security-CVE-2026-32993-cPanel-WHM-WP2-Security-Update-May-13-2026"
            }
          ]
        }
      },
      "cveMetadata": {
        "assignerOrgId": "36234546-b8fa-4601-9d6f-f4e334aa8ea1",
        "assignerShortName": "hackerone",
        "cveId": "CVE-2026-32993",
        "datePublished": "2026-05-13T22:06:04.114Z",
        "dateReserved": "2026-03-17T15:00:07.746Z",
        "dateUpdated": "2026-05-14T13:12:33.758Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.2"
    }

    CVE-2026-32992 (GCVE-0-2026-32992)

    Vulnerability from nvd – Published: 2026-05-13 22:06 – Updated: 2026-05-14 13:13
    VLAI
    Summary
    SSL verification is disabled in the DNS Cluster system. This could allow for a malicious server to man-in-the-middle the request and capture credentials.
    SSVC
    Exploitation: none Automatable: yes Technical Impact: partial
    CISA Coordinator (v2.0.3)
    CWE
    • CWE-295 - Improper Certificate Validation
    Assigner
    Impacted products
    Vendor Product Version
    WebPros cPanel Affected: 11.136.0.0 , < 11.136.0.10 (semver)
    Affected: 11.134.0.0 , < 11.134.0.26 (semver)
    Affected: 11.132.0.0 , < 11.132.0.32 (semver)
    Affected: 11.130.0.0 , < 11.130.0.23 (semver)
    Affected: 11.126.0.0 , < 11.126.0.59 (semver)
    Create a notification for this product.
    WebPros WP Squared Affected: 11.126.1.0 , < 11.136.1.12 (semver)
    Create a notification for this product.
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "metrics": [
              {
                "other": {
                  "content": {
                    "id": "CVE-2026-32992",
                    "options": [
                      {
                        "Exploitation": "none"
                      },
                      {
                        "Automatable": "yes"
                      },
                      {
                        "Technical Impact": "partial"
                      }
                    ],
                    "role": "CISA Coordinator",
                    "timestamp": "2026-05-14T13:12:58.222950Z",
                    "version": "2.0.3"
                  },
                  "type": "ssvc"
                }
              }
            ],
            "providerMetadata": {
              "dateUpdated": "2026-05-14T13:13:06.565Z",
              "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
              "shortName": "CISA-ADP"
            },
            "title": "CISA ADP Vulnrichment"
          }
        ],
        "cna": {
          "affected": [
            {
              "defaultStatus": "unaffected",
              "product": "cPanel",
              "vendor": "WebPros",
              "versions": [
                {
                  "lessThan": "11.136.0.10",
                  "status": "affected",
                  "version": "11.136.0.0",
                  "versionType": "semver"
                },
                {
                  "lessThan": "11.134.0.26",
                  "status": "affected",
                  "version": "11.134.0.0",
                  "versionType": "semver"
                },
                {
                  "lessThan": "11.132.0.32",
                  "status": "affected",
                  "version": "11.132.0.0",
                  "versionType": "semver"
                },
                {
                  "lessThan": "11.130.0.23",
                  "status": "affected",
                  "version": "11.130.0.0",
                  "versionType": "semver"
                },
                {
                  "lessThan": "11.126.0.59",
                  "status": "affected",
                  "version": "11.126.0.0",
                  "versionType": "semver"
                }
              ]
            },
            {
              "defaultStatus": "unaffected",
              "product": "WP Squared",
              "vendor": "WebPros",
              "versions": [
                {
                  "lessThan": "11.136.1.12",
                  "status": "affected",
                  "version": "11.126.1.0",
                  "versionType": "semver"
                }
              ]
            }
          ],
          "descriptions": [
            {
              "lang": "en",
              "value": "SSL verification is disabled in the DNS Cluster system. This could allow for a malicious server to man-in-the-middle the request and capture credentials."
            }
          ],
          "metrics": [
            {
              "cvssV3_1": {
                "baseScore": 8.2,
                "baseSeverity": "HIGH",
                "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:L/A:N",
                "version": "3.1"
              }
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "cweId": "CWE-295",
                  "description": "CWE-295 Improper Certificate Validation",
                  "lang": "en",
                  "type": "CWE"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2026-05-13T22:06:04.157Z",
            "orgId": "36234546-b8fa-4601-9d6f-f4e334aa8ea1",
            "shortName": "hackerone"
          },
          "references": [
            {
              "url": "https://support.cpanel.net/hc/en-us/articles/40437241987607-Security-CVE-2026-32992-cPanel-WHM-WP2-Security-Update-May-13-2026"
            }
          ]
        }
      },
      "cveMetadata": {
        "assignerOrgId": "36234546-b8fa-4601-9d6f-f4e334aa8ea1",
        "assignerShortName": "hackerone",
        "cveId": "CVE-2026-32992",
        "datePublished": "2026-05-13T22:06:04.157Z",
        "dateReserved": "2026-03-17T15:00:07.746Z",
        "dateUpdated": "2026-05-14T13:13:06.565Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.2"
    }

    CVE-2026-29205 (GCVE-0-2026-29205)

    Vulnerability from nvd – Published: 2026-05-13 22:06 – Updated: 2026-05-14 13:13
    VLAI
    Summary
    Incorrect privileges management and insufficient path filtering allow to read arbitrary file on the server via the cpdavd attachment download endpoints.
    SSVC
    Exploitation: none Automatable: yes Technical Impact: partial
    CISA Coordinator (v2.0.3)
    CWE
    • CWE-250 - Execution with Unnecessary Privileges
    Assigner
    Impacted products
    Vendor Product Version
    WebPros cPanel Affected: 11.136.0.0 , < 11.136.0.10 (semver)
    Affected: 11.134.0.0 , < 11.134.0.26 (semver)
    Affected: 11.132.0.0 , < 11.132.0.32 (semver)
    Affected: 11.130.0.0 , < 11.130.0.23 (semver)
    Affected: 11.126.0.0 , < 11.126.0.59 (semver)
    Affected: 11.120.0.0 , < 11.124.0.38 (semver)
    Create a notification for this product.
    WebPros WP Squared Affected: 11.120.1.0 , < 11.136.1.12 (semver)
    Create a notification for this product.
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "metrics": [
              {
                "other": {
                  "content": {
                    "id": "CVE-2026-29205",
                    "options": [
                      {
                        "Exploitation": "none"
                      },
                      {
                        "Automatable": "yes"
                      },
                      {
                        "Technical Impact": "partial"
                      }
                    ],
                    "role": "CISA Coordinator",
                    "timestamp": "2026-05-14T13:13:34.728020Z",
                    "version": "2.0.3"
                  },
                  "type": "ssvc"
                }
              }
            ],
            "providerMetadata": {
              "dateUpdated": "2026-05-14T13:13:52.380Z",
              "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
              "shortName": "CISA-ADP"
            },
            "title": "CISA ADP Vulnrichment"
          }
        ],
        "cna": {
          "affected": [
            {
              "defaultStatus": "unaffected",
              "product": "cPanel",
              "vendor": "WebPros",
              "versions": [
                {
                  "lessThan": "11.136.0.10",
                  "status": "affected",
                  "version": "11.136.0.0",
                  "versionType": "semver"
                },
                {
                  "lessThan": "11.134.0.26",
                  "status": "affected",
                  "version": "11.134.0.0",
                  "versionType": "semver"
                },
                {
                  "lessThan": "11.132.0.32",
                  "status": "affected",
                  "version": "11.132.0.0",
                  "versionType": "semver"
                },
                {
                  "lessThan": "11.130.0.23",
                  "status": "affected",
                  "version": "11.130.0.0",
                  "versionType": "semver"
                },
                {
                  "lessThan": "11.126.0.59",
                  "status": "affected",
                  "version": "11.126.0.0",
                  "versionType": "semver"
                },
                {
                  "lessThan": "11.124.0.38",
                  "status": "affected",
                  "version": "11.120.0.0",
                  "versionType": "semver"
                }
              ]
            },
            {
              "defaultStatus": "unaffected",
              "product": "WP Squared",
              "vendor": "WebPros",
              "versions": [
                {
                  "lessThan": "11.136.1.12",
                  "status": "affected",
                  "version": "11.120.1.0",
                  "versionType": "semver"
                }
              ]
            }
          ],
          "descriptions": [
            {
              "lang": "en",
              "value": "Incorrect privileges management and insufficient path filtering allow to read arbitrary file on the server via the cpdavd attachment download endpoints."
            }
          ],
          "metrics": [
            {
              "cvssV3_1": {
                "baseScore": 8.6,
                "baseSeverity": "HIGH",
                "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:L/A:L",
                "version": "3.1"
              }
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "cweId": "CWE-250",
                  "description": "CWE-250 Execution with Unnecessary Privileges",
                  "lang": "en",
                  "type": "CWE"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2026-05-13T22:06:04.220Z",
            "orgId": "36234546-b8fa-4601-9d6f-f4e334aa8ea1",
            "shortName": "hackerone"
          },
          "references": [
            {
              "url": "https://support.cpanel.net/hc/en-us/articles/40437020299927-Security-CVE-2026-29205-cPanel-WHM-WP2-Security-Update-May-13-2026"
            }
          ]
        }
      },
      "cveMetadata": {
        "assignerOrgId": "36234546-b8fa-4601-9d6f-f4e334aa8ea1",
        "assignerShortName": "hackerone",
        "cveId": "CVE-2026-29205",
        "datePublished": "2026-05-13T22:06:04.220Z",
        "dateReserved": "2026-03-04T15:00:09.267Z",
        "dateUpdated": "2026-05-14T13:13:52.380Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.2"
    }

    CVE-2026-29204 (GCVE-0-2026-29204)

    Vulnerability from nvd – Published: 2026-05-12 17:46 – Updated: 2026-05-12 21:57
    VLAI
    Summary
    Insufficient ownership check in `clientarea.php` allows an authenticated client area user to submit requests using another user’s `addonId` without any ownership validation leading to unauthorized access to the victim's account.
    SSVC
    Exploitation: none Automatable: yes Technical Impact: total
    CISA Coordinator (v2.0.3)
    CWE
    • CWE-639 - Insecure Direct Object Reference (IDOR)
    Assigner
    Impacted products
    Vendor Product Version
    WebPros WHMCS Affected: 7.4.0 , ≤ 18.12.2 (semver)
    Affected: 18.13.0 , < 18.13.3 (semver)
    Affected: 9.0.0 , < 9.0.4 (semver)
    Create a notification for this product.
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "metrics": [
              {
                "other": {
                  "content": {
                    "id": "CVE-2026-29204",
                    "options": [
                      {
                        "Exploitation": "none"
                      },
                      {
                        "Automatable": "yes"
                      },
                      {
                        "Technical Impact": "total"
                      }
                    ],
                    "role": "CISA Coordinator",
                    "timestamp": "2026-05-12T21:10:39.672400Z",
                    "version": "2.0.3"
                  },
                  "type": "ssvc"
                }
              }
            ],
            "providerMetadata": {
              "dateUpdated": "2026-05-12T21:13:06.404Z",
              "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
              "shortName": "CISA-ADP"
            },
            "title": "CISA ADP Vulnrichment"
          }
        ],
        "cna": {
          "affected": [
            {
              "defaultStatus": "unaffected",
              "product": "WHMCS",
              "vendor": "WebPros",
              "versions": [
                {
                  "lessThanOrEqual": "18.12.2",
                  "status": "affected",
                  "version": "7.4.0",
                  "versionType": "semver"
                },
                {
                  "lessThan": "18.13.3",
                  "status": "affected",
                  "version": "18.13.0",
                  "versionType": "semver"
                },
                {
                  "lessThan": "9.0.4",
                  "status": "affected",
                  "version": "9.0.0",
                  "versionType": "semver"
                }
              ]
            }
          ],
          "descriptions": [
            {
              "lang": "en",
              "value": "Insufficient ownership check in `clientarea.php` allows an authenticated client area user to submit requests using another user\u2019s `addonId` without any ownership validation leading to unauthorized access to the victim\u0027s account."
            }
          ],
          "metrics": [
            {
              "cvssV3_1": {
                "baseScore": 9.1,
                "baseSeverity": "CRITICAL",
                "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N",
                "version": "3.1"
              }
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "cweId": "CWE-639",
                  "description": "CWE-639 Insecure Direct Object Reference (IDOR)",
                  "lang": "en",
                  "type": "CWE"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2026-05-12T21:57:08.277Z",
            "orgId": "36234546-b8fa-4601-9d6f-f4e334aa8ea1",
            "shortName": "hackerone"
          },
          "references": [
            {
              "url": "https://help.whmcs.com/m/125386/l/2073908-cve-2026-29204"
            }
          ]
        }
      },
      "cveMetadata": {
        "assignerOrgId": "36234546-b8fa-4601-9d6f-f4e334aa8ea1",
        "assignerShortName": "hackerone",
        "cveId": "CVE-2026-29204",
        "datePublished": "2026-05-12T17:46:55.152Z",
        "dateReserved": "2026-03-04T15:00:09.267Z",
        "dateUpdated": "2026-05-12T21:57:08.277Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.2"
    }

    CVE-2026-29203 (GCVE-0-2026-29203)

    Vulnerability from nvd – Published: 2026-05-08 18:51 – Updated: 2026-05-15 17:14
    VLAI
    Summary
    A chmod call in the cPanel Nova plugin's Cpanel::Nova::Connector follows symlinks, allowing setting root permissions on arbitrary system files or directories. That can cause DoS or local privilege escalation when an authenticated cPanel user places a symlink at a user-controlled legacy Nova path under their home directory.
    SSVC
    Exploitation: none Automatable: no Technical Impact: total
    CISA Coordinator (v2.0.3)
    CWE
    • CWE-61 - UNIX Symbolic Link (Symlink) Following
    Assigner
    Impacted products
    Vendor Product Version
    WebPros cPanel Affected: 11.136.0.0 , < 11.136.0.9 (semver)
    Affected: 11.134.0.0 , < 11.134.0.25 (semver)
    Affected: 11.132.0.0 , < 11.132.0.31 (semver)
    Affected: 11.130.0.0 , < 11.130.0.22 (semver)
    Affected: 11.126.0.0 , < 11.126.0.58 (semver)
    Affected: 11.124.0.0 , < 11.124.0.37 (semver)
    Affected: 11.118.0.0 , < 11.118.0.66 (semver)
    Affected: 11.110.0.0 , < 11.110.0.117 (semver)
    Affected: 11.102.0.0 , < 11.102.0.41 (semver)
    Affected: 11.94.0.0 , < 11.94.0.30 (semver)
    Affected: 11.86.0.0 , < 11.86.0.43 (semver)
    Create a notification for this product.
    WebPros cPanel (CloudLinux 6, CentOS 6) Affected: 11.110.0.0 , < 11.110.0.116 (semver)
    Create a notification for this product.
    WebPros WP Squared Affected: 11.136.1.0 , < 11.136.1.10 (semver)
    Create a notification for this product.
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "metrics": [
              {
                "cvssV3_1": {
                  "attackComplexity": "LOW",
                  "attackVector": "NETWORK",
                  "availabilityImpact": "HIGH",
                  "baseScore": 8.8,
                  "baseSeverity": "HIGH",
                  "confidentialityImpact": "HIGH",
                  "integrityImpact": "HIGH",
                  "privilegesRequired": "LOW",
                  "scope": "UNCHANGED",
                  "userInteraction": "NONE",
                  "vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
                  "version": "3.1"
                }
              },
              {
                "other": {
                  "content": {
                    "id": "CVE-2026-29203",
                    "options": [
                      {
                        "Exploitation": "none"
                      },
                      {
                        "Automatable": "no"
                      },
                      {
                        "Technical Impact": "total"
                      }
                    ],
                    "role": "CISA Coordinator",
                    "timestamp": "2026-05-08T00:00:00+00:00",
                    "version": "2.0.3"
                  },
                  "type": "ssvc"
                }
              }
            ],
            "providerMetadata": {
              "dateUpdated": "2026-05-09T03:56:05.260Z",
              "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
              "shortName": "CISA-ADP"
            },
            "title": "CISA ADP Vulnrichment"
          }
        ],
        "cna": {
          "affected": [
            {
              "defaultStatus": "unaffected",
              "product": "cPanel",
              "vendor": "WebPros",
              "versions": [
                {
                  "lessThan": "11.136.0.9",
                  "status": "affected",
                  "version": "11.136.0.0",
                  "versionType": "semver"
                },
                {
                  "lessThan": "11.134.0.25",
                  "status": "affected",
                  "version": "11.134.0.0",
                  "versionType": "semver"
                },
                {
                  "lessThan": "11.132.0.31",
                  "status": "affected",
                  "version": "11.132.0.0",
                  "versionType": "semver"
                },
                {
                  "lessThan": "11.130.0.22",
                  "status": "affected",
                  "version": "11.130.0.0",
                  "versionType": "semver"
                },
                {
                  "lessThan": "11.126.0.58",
                  "status": "affected",
                  "version": "11.126.0.0",
                  "versionType": "semver"
                },
                {
                  "lessThan": "11.124.0.37",
                  "status": "affected",
                  "version": "11.124.0.0",
                  "versionType": "semver"
                },
                {
                  "lessThan": "11.118.0.66",
                  "status": "affected",
                  "version": "11.118.0.0",
                  "versionType": "semver"
                },
                {
                  "lessThan": "11.110.0.117",
                  "status": "affected",
                  "version": "11.110.0.0",
                  "versionType": "semver"
                },
                {
                  "lessThan": "11.102.0.41",
                  "status": "affected",
                  "version": "11.102.0.0",
                  "versionType": "semver"
                },
                {
                  "lessThan": "11.94.0.30",
                  "status": "affected",
                  "version": "11.94.0.0",
                  "versionType": "semver"
                },
                {
                  "lessThan": "11.86.0.43",
                  "status": "affected",
                  "version": "11.86.0.0",
                  "versionType": "semver"
                }
              ]
            },
            {
              "defaultStatus": "unaffected",
              "product": "cPanel (CloudLinux 6, CentOS 6)",
              "vendor": "WebPros",
              "versions": [
                {
                  "lessThan": "11.110.0.116",
                  "status": "affected",
                  "version": "11.110.0.0",
                  "versionType": "semver"
                }
              ]
            },
            {
              "defaultStatus": "unaffected",
              "product": "WP Squared",
              "vendor": "WebPros",
              "versions": [
                {
                  "lessThan": "11.136.1.10",
                  "status": "affected",
                  "version": "11.136.1.0",
                  "versionType": "semver"
                }
              ]
            }
          ],
          "descriptions": [
            {
              "lang": "en",
              "value": "A chmod call in the cPanel Nova plugin\u0027s Cpanel::Nova::Connector follows symlinks, allowing setting root permissions on arbitrary system files or directories. That can cause DoS or local privilege escalation when an authenticated cPanel user places a symlink at a user-controlled legacy Nova path under their home directory."
            }
          ],
          "metrics": [
            {
              "cvssV4_0": {
                "baseScore": 5.3,
                "baseSeverity": "MEDIUM",
                "vectorString": "CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:N/VI:L/VA:L/SC:N/SI:N/SA:N",
                "version": "4.0"
              }
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "cweId": "CWE-61",
                  "description": "CWE-61 UNIX Symbolic Link (Symlink) Following",
                  "lang": "en",
                  "type": "CWE"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2026-05-15T17:14:52.318Z",
            "orgId": "36234546-b8fa-4601-9d6f-f4e334aa8ea1",
            "shortName": "hackerone"
          },
          "references": [
            {
              "url": "https://support.cpanel.net/hc/en-us/articles/40311543760407-Security-CVE-2026-29203-cPanel-WHM-WP2-Security-Update-May-08-2026"
            }
          ]
        }
      },
      "cveMetadata": {
        "assignerOrgId": "36234546-b8fa-4601-9d6f-f4e334aa8ea1",
        "assignerShortName": "hackerone",
        "cveId": "CVE-2026-29203",
        "datePublished": "2026-05-08T18:51:05.541Z",
        "dateReserved": "2026-03-04T15:00:09.267Z",
        "dateUpdated": "2026-05-15T17:14:52.318Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.2"
    }

    CVE-2026-29202 (GCVE-0-2026-29202)

    Vulnerability from nvd – Published: 2026-05-08 18:51 – Updated: 2026-05-13 22:03
    VLAI
    Summary
    Insufficient input validation of the `plugin` parameter of the `create_user` plugin allows arbitrary Perl code execution on behalf of the already authenticated account's system user.
    SSVC
    Exploitation: none Automatable: no Technical Impact: total
    CISA Coordinator (v2.0.3)
    CWE
    Assigner
    Impacted products
    Vendor Product Version
    WebPros cPanel Affected: 11.136.0.0 , < 11.136.0.9 (semver)
    Affected: 11.134.0.0 , < 11.134.0.25 (semver)
    Affected: 11.132.0.0 , < 11.132.0.31 (semver)
    Affected: 11.130.0.0 , < 11.130.0.22 (semver)
    Affected: 11.126.0.0 , < 11.126.0.58 (semver)
    Affected: 11.124.0.0 , < 11.124.0.37 (semver)
    Affected: 11.118.0.0 , < 11.118.0.66 (semver)
    Affected: 11.110.0.0 , < 11.110.0.117 (semver)
    Affected: 11.102.0.0 , < 11.102.0.41 (semver)
    Affected: 11.94.0.0 , < 11.94.0.30 (semver)
    Affected: 11.86.0.0 , < 11.86.0.43 (semver)
    Create a notification for this product.
    WebPros cPanel (CloudLinux 6, CentOS 6) Affected: 11.110.0.0 , < 11.110.0.116 (semver)
    Create a notification for this product.
    WebPros WP Squared Affected: 11.136.1.0 , < 11.136.1.11 (semver)
    Create a notification for this product.
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "metrics": [
              {
                "cvssV3_1": {
                  "attackComplexity": "LOW",
                  "attackVector": "NETWORK",
                  "availabilityImpact": "HIGH",
                  "baseScore": 8.8,
                  "baseSeverity": "HIGH",
                  "confidentialityImpact": "HIGH",
                  "integrityImpact": "HIGH",
                  "privilegesRequired": "LOW",
                  "scope": "UNCHANGED",
                  "userInteraction": "NONE",
                  "vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
                  "version": "3.1"
                }
              },
              {
                "other": {
                  "content": {
                    "id": "CVE-2026-29202",
                    "options": [
                      {
                        "Exploitation": "none"
                      },
                      {
                        "Automatable": "no"
                      },
                      {
                        "Technical Impact": "total"
                      }
                    ],
                    "role": "CISA Coordinator",
                    "timestamp": "2026-05-08T00:00:00+00:00",
                    "version": "2.0.3"
                  },
                  "type": "ssvc"
                }
              }
            ],
            "providerMetadata": {
              "dateUpdated": "2026-05-09T03:56:06.386Z",
              "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
              "shortName": "CISA-ADP"
            },
            "title": "CISA ADP Vulnrichment"
          }
        ],
        "cna": {
          "affected": [
            {
              "defaultStatus": "unaffected",
              "product": "cPanel",
              "vendor": "WebPros",
              "versions": [
                {
                  "lessThan": "11.136.0.9",
                  "status": "affected",
                  "version": "11.136.0.0",
                  "versionType": "semver"
                },
                {
                  "lessThan": "11.134.0.25",
                  "status": "affected",
                  "version": "11.134.0.0",
                  "versionType": "semver"
                },
                {
                  "lessThan": "11.132.0.31",
                  "status": "affected",
                  "version": "11.132.0.0",
                  "versionType": "semver"
                },
                {
                  "lessThan": "11.130.0.22",
                  "status": "affected",
                  "version": "11.130.0.0",
                  "versionType": "semver"
                },
                {
                  "lessThan": "11.126.0.58",
                  "status": "affected",
                  "version": "11.126.0.0",
                  "versionType": "semver"
                },
                {
                  "lessThan": "11.124.0.37",
                  "status": "affected",
                  "version": "11.124.0.0",
                  "versionType": "semver"
                },
                {
                  "lessThan": "11.118.0.66",
                  "status": "affected",
                  "version": "11.118.0.0",
                  "versionType": "semver"
                },
                {
                  "lessThan": "11.110.0.117",
                  "status": "affected",
                  "version": "11.110.0.0",
                  "versionType": "semver"
                },
                {
                  "lessThan": "11.102.0.41",
                  "status": "affected",
                  "version": "11.102.0.0",
                  "versionType": "semver"
                },
                {
                  "lessThan": "11.94.0.30",
                  "status": "affected",
                  "version": "11.94.0.0",
                  "versionType": "semver"
                },
                {
                  "lessThan": "11.86.0.43",
                  "status": "affected",
                  "version": "11.86.0.0",
                  "versionType": "semver"
                }
              ]
            },
            {
              "defaultStatus": "unaffected",
              "product": "cPanel (CloudLinux 6, CentOS 6)",
              "vendor": "WebPros",
              "versions": [
                {
                  "lessThan": "11.110.0.116",
                  "status": "affected",
                  "version": "11.110.0.0",
                  "versionType": "semver"
                }
              ]
            },
            {
              "defaultStatus": "unaffected",
              "product": "WP Squared",
              "vendor": "WebPros",
              "versions": [
                {
                  "lessThan": "11.136.1.11",
                  "status": "affected",
                  "version": "11.136.1.0",
                  "versionType": "semver"
                }
              ]
            }
          ],
          "descriptions": [
            {
              "lang": "en",
              "value": "Insufficient input validation of the `plugin` parameter of the `create_user` plugin allows arbitrary Perl code execution on behalf of the already authenticated account\u0027s system user."
            }
          ],
          "metrics": [
            {
              "cvssV4_0": {
                "baseScore": 5.3,
                "baseSeverity": "MEDIUM",
                "vectorString": "CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:L/VI:L/VA:N/SC:N/SI:N/SA:N",
                "version": "4.0"
              }
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "cweId": "CWE-94",
                  "description": "CWE-94 Code Injection",
                  "lang": "en",
                  "type": "CWE"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2026-05-13T22:03:15.187Z",
            "orgId": "36234546-b8fa-4601-9d6f-f4e334aa8ea1",
            "shortName": "hackerone"
          },
          "references": [
            {
              "url": "https://support.cpanel.net/hc/en-us/articles/40311426610327-Security-CVE-2026-29202-cPanel-WHM-WP2-Security-Update-May-08-2026"
            }
          ]
        }
      },
      "cveMetadata": {
        "assignerOrgId": "36234546-b8fa-4601-9d6f-f4e334aa8ea1",
        "assignerShortName": "hackerone",
        "cveId": "CVE-2026-29202",
        "datePublished": "2026-05-08T18:51:05.585Z",
        "dateReserved": "2026-03-04T15:00:09.267Z",
        "dateUpdated": "2026-05-13T22:03:15.187Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.2"
    }

    CVE-2026-29201 (GCVE-0-2026-29201)

    Vulnerability from nvd – Published: 2026-05-08 18:51 – Updated: 2026-05-13 21:59
    VLAI
    Summary
    Insufficient input validation of the feature file name in `feature::LOADFEATUREFILE` adminbin call can cause arbitrary file read when a relative file path is passed.
    SSVC
    Exploitation: none Automatable: no Technical Impact: partial
    CISA Coordinator (v2.0.3)
    CWE
    • CWE-23 - Relative Path Traversal
    Assigner
    Impacted products
    Vendor Product Version
    WebPros cPanel Affected: 11.136.0.0 , < 11.136.0.9 (semver)
    Affected: 11.134.0.0 , < 11.134.0.25 (semver)
    Affected: 11.132.0.0 , < 11.132.0.31 (semver)
    Affected: 11.130.0.0 , < 11.130.0.22 (semver)
    Affected: 11.126.0.0 , < 11.126.0.58 (semver)
    Affected: 11.124.0.0 , < 11.124.0.37 (semver)
    Affected: 11.118.0.0 , < 11.118.0.66 (semver)
    Affected: 11.110.0.0 , < 11.110.0.117 (semver)
    Affected: 11.102.0.0 , < 11.102.0.41 (semver)
    Affected: 11.94.0.0 , < 11.94.0.30 (semver)
    Affected: 11.86.0.0 , < 11.86.0.43 (semver)
    Create a notification for this product.
    WebPros WP Squared Affected: 11.136.1.0 , < 11.136.1.11 (semver)
    Create a notification for this product.
    WebPros cPanel (CloudLinux 6, CentOS 6) Affected: 11.110.0.0 , < 11.110.0.116 (semver)
    Create a notification for this product.
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "metrics": [
              {
                "cvssV3_1": {
                  "attackComplexity": "LOW",
                  "attackVector": "NETWORK",
                  "availabilityImpact": "NONE",
                  "baseScore": 4.3,
                  "baseSeverity": "MEDIUM",
                  "confidentialityImpact": "LOW",
                  "integrityImpact": "NONE",
                  "privilegesRequired": "LOW",
                  "scope": "UNCHANGED",
                  "userInteraction": "NONE",
                  "vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N",
                  "version": "3.1"
                }
              },
              {
                "other": {
                  "content": {
                    "id": "CVE-2026-29201",
                    "options": [
                      {
                        "Exploitation": "none"
                      },
                      {
                        "Automatable": "no"
                      },
                      {
                        "Technical Impact": "partial"
                      }
                    ],
                    "role": "CISA Coordinator",
                    "timestamp": "2026-05-08T19:52:34.386985Z",
                    "version": "2.0.3"
                  },
                  "type": "ssvc"
                }
              }
            ],
            "providerMetadata": {
              "dateUpdated": "2026-05-08T19:52:40.780Z",
              "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
              "shortName": "CISA-ADP"
            },
            "title": "CISA ADP Vulnrichment"
          }
        ],
        "cna": {
          "affected": [
            {
              "defaultStatus": "unaffected",
              "product": "cPanel",
              "vendor": "WebPros",
              "versions": [
                {
                  "lessThan": "11.136.0.9",
                  "status": "affected",
                  "version": "11.136.0.0",
                  "versionType": "semver"
                },
                {
                  "lessThan": "11.134.0.25",
                  "status": "affected",
                  "version": "11.134.0.0",
                  "versionType": "semver"
                },
                {
                  "lessThan": "11.132.0.31",
                  "status": "affected",
                  "version": "11.132.0.0",
                  "versionType": "semver"
                },
                {
                  "lessThan": "11.130.0.22",
                  "status": "affected",
                  "version": "11.130.0.0",
                  "versionType": "semver"
                },
                {
                  "lessThan": "11.126.0.58",
                  "status": "affected",
                  "version": "11.126.0.0",
                  "versionType": "semver"
                },
                {
                  "lessThan": "11.124.0.37",
                  "status": "affected",
                  "version": "11.124.0.0",
                  "versionType": "semver"
                },
                {
                  "lessThan": "11.118.0.66",
                  "status": "affected",
                  "version": "11.118.0.0",
                  "versionType": "semver"
                },
                {
                  "lessThan": "11.110.0.117",
                  "status": "affected",
                  "version": "11.110.0.0",
                  "versionType": "semver"
                },
                {
                  "lessThan": "11.102.0.41",
                  "status": "affected",
                  "version": "11.102.0.0",
                  "versionType": "semver"
                },
                {
                  "lessThan": "11.94.0.30",
                  "status": "affected",
                  "version": "11.94.0.0",
                  "versionType": "semver"
                },
                {
                  "lessThan": "11.86.0.43",
                  "status": "affected",
                  "version": "11.86.0.0",
                  "versionType": "semver"
                }
              ]
            },
            {
              "defaultStatus": "unaffected",
              "product": "WP Squared",
              "vendor": "WebPros",
              "versions": [
                {
                  "lessThan": "11.136.1.11",
                  "status": "affected",
                  "version": "11.136.1.0",
                  "versionType": "semver"
                }
              ]
            },
            {
              "defaultStatus": "unaffected",
              "product": "cPanel (CloudLinux 6, CentOS 6)",
              "vendor": "WebPros",
              "versions": [
                {
                  "lessThan": "11.110.0.116",
                  "status": "affected",
                  "version": "11.110.0.0",
                  "versionType": "semver"
                }
              ]
            }
          ],
          "descriptions": [
            {
              "lang": "en",
              "value": "Insufficient input validation of the feature file name in `feature::LOADFEATUREFILE` adminbin call can cause arbitrary file read when a relative file path is passed."
            }
          ],
          "metrics": [
            {
              "cvssV3_1": {
                "baseScore": 8.6,
                "baseSeverity": "HIGH",
                "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:L/A:L",
                "version": "3.1"
              }
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "cweId": "CWE-23",
                  "description": "CWE-23 Relative Path Traversal",
                  "lang": "en",
                  "type": "CWE"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2026-05-13T21:59:09.469Z",
            "orgId": "36234546-b8fa-4601-9d6f-f4e334aa8ea1",
            "shortName": "hackerone"
          },
          "references": [
            {
              "url": "https://support.cpanel.net/hc/en-us/articles/40311033698327-Security-CVE-2026-29201-cPanel-WHM-WP2-Security-Update-May-08-2026"
            }
          ]
        }
      },
      "cveMetadata": {
        "assignerOrgId": "36234546-b8fa-4601-9d6f-f4e334aa8ea1",
        "assignerShortName": "hackerone",
        "cveId": "CVE-2026-29201",
        "datePublished": "2026-05-08T18:51:05.803Z",
        "dateReserved": "2026-03-04T15:00:09.267Z",
        "dateUpdated": "2026-05-13T21:59:09.469Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.2"
    }

    CVE-2026-29200 (GCVE-0-2026-29200)

    Vulnerability from nvd – Published: 2026-05-04 05:42 – Updated: 2026-05-04 19:44
    VLAI
    Summary
    A critical IDOR vulnerability has been discovered in Comet Backup affecting all versions from 20.11.0 to 26.1.1 and 26.2.1. The vulnerability allows a tenant administrator to impersonate any end-user account of other tenants on the same server via a vulnerable API call.
    SSVC
    Exploitation: none Automatable: yes Technical Impact: total
    CISA Coordinator (v2.0.3)
    CWE
    • CWE-639 - Insecure Direct Object Reference (IDOR)
    Assigner
    Impacted products
    Vendor Product Version
    WebPros Comet Backup Affected: 20.11.0 , < 26.1.2 (semver)
    Affected: 26.2.0 , < 26.2.2 (semver)
    Create a notification for this product.
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "metrics": [
              {
                "other": {
                  "content": {
                    "id": "CVE-2026-29200",
                    "options": [
                      {
                        "Exploitation": "none"
                      },
                      {
                        "Automatable": "yes"
                      },
                      {
                        "Technical Impact": "total"
                      }
                    ],
                    "role": "CISA Coordinator",
                    "timestamp": "2026-05-04T19:44:00.939292Z",
                    "version": "2.0.3"
                  },
                  "type": "ssvc"
                }
              }
            ],
            "providerMetadata": {
              "dateUpdated": "2026-05-04T19:44:22.056Z",
              "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
              "shortName": "CISA-ADP"
            },
            "title": "CISA ADP Vulnrichment"
          }
        ],
        "cna": {
          "affected": [
            {
              "defaultStatus": "unaffected",
              "product": "Comet Backup",
              "vendor": "WebPros",
              "versions": [
                {
                  "lessThan": "26.1.2",
                  "status": "affected",
                  "version": "20.11.0",
                  "versionType": "semver"
                },
                {
                  "lessThan": "26.2.2",
                  "status": "affected",
                  "version": "26.2.0",
                  "versionType": "semver"
                }
              ]
            }
          ],
          "descriptions": [
            {
              "lang": "en",
              "value": "A critical IDOR vulnerability has been discovered in Comet Backup affecting all versions from 20.11.0 to 26.1.1 and 26.2.1. The vulnerability allows a tenant administrator to impersonate any end-user account of other tenants on the same server via a vulnerable API call."
            }
          ],
          "metrics": [
            {
              "cvssV4_0": {
                "baseScore": 9.9,
                "baseSeverity": "CRITICAL",
                "vectorString": "CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:N/SC:N/SI:N/SA:H",
                "version": "4.0"
              }
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "cweId": "CWE-639",
                  "description": "CWE-639 Insecure Direct Object Reference (IDOR)",
                  "lang": "en",
                  "type": "CWE"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2026-05-04T05:42:15.576Z",
            "orgId": "36234546-b8fa-4601-9d6f-f4e334aa8ea1",
            "shortName": "hackerone"
          },
          "references": [
            {
              "url": "https://support.cometbackup.com/hc/en-us/articles/40090945484823--CVE-2026-29200-%D0%A1ritical-IDOR-vulnerability-in-Comet-Backup"
            }
          ]
        }
      },
      "cveMetadata": {
        "assignerOrgId": "36234546-b8fa-4601-9d6f-f4e334aa8ea1",
        "assignerShortName": "hackerone",
        "cveId": "CVE-2026-29200",
        "datePublished": "2026-05-04T05:42:15.576Z",
        "dateReserved": "2026-03-04T15:00:09.266Z",
        "dateUpdated": "2026-05-04T19:44:22.056Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.2"
    }

    CVE-2026-56843 (GCVE-0-2026-56843)

    Vulnerability from cvelistv5 – Published: 2026-07-08 00:15 – Updated: 2026-07-08 13:04
    VLAI
    Summary
    Incorrect authorization in the XML-RPC API of WebPros Plesk before 18.0.78.4 allows a low-privileged authenticated customer to look up domains they do not own, because ownership is enforced only for certain lookup filters and schema validation is bypassed for legacy protocol versions. This results in cross-tenant disclosure of other tenants' FTP credentials stored in cleartext, which can be leveraged to execute code as another tenant's system user.
    SSVC
    Exploitation: none Automatable: no Technical Impact: total
    CISA Coordinator (v2.0.3)
    CWE
    • CWE-522 - Insufficiently Protected Credentials
    Assigner
    Impacted products
    Vendor Product Version
    Webpros Plesk Affected: 10.4 , < 18.0.78.4 (semver)
    Create a notification for this product.
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "metrics": [
              {
                "other": {
                  "content": {
                    "id": "CVE-2026-56843",
                    "options": [
                      {
                        "Exploitation": "none"
                      },
                      {
                        "Automatable": "no"
                      },
                      {
                        "Technical Impact": "total"
                      }
                    ],
                    "role": "CISA Coordinator",
                    "timestamp": "2026-07-08T13:04:03.813528Z",
                    "version": "2.0.3"
                  },
                  "type": "ssvc"
                }
              }
            ],
            "providerMetadata": {
              "dateUpdated": "2026-07-08T13:04:17.023Z",
              "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
              "shortName": "CISA-ADP"
            },
            "title": "CISA ADP Vulnrichment"
          }
        ],
        "cna": {
          "affected": [
            {
              "defaultStatus": "unaffected",
              "product": "Plesk",
              "vendor": "Webpros",
              "versions": [
                {
                  "lessThan": "18.0.78.4",
                  "status": "affected",
                  "version": "10.4",
                  "versionType": "semver"
                }
              ]
            }
          ],
          "descriptions": [
            {
              "lang": "en",
              "value": "Incorrect authorization in the XML-RPC API of WebPros Plesk before 18.0.78.4 allows a low-privileged authenticated customer to look up domains they do not own, because ownership is enforced only for certain lookup filters and schema validation is bypassed for legacy protocol versions. This results in cross-tenant disclosure of other tenants\u0027 FTP credentials stored in cleartext, which can be leveraged to execute code as another tenant\u0027s system user."
            }
          ],
          "metrics": [
            {
              "cvssV3_1": {
                "baseScore": 9.9,
                "baseSeverity": "CRITICAL",
                "vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H",
                "version": "3.1"
              }
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "cweId": "CWE-522",
                  "description": "CWE-522 Insufficiently Protected Credentials",
                  "lang": "en",
                  "type": "CWE"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2026-07-08T00:15:43.120Z",
            "orgId": "36234546-b8fa-4601-9d6f-f4e334aa8ea1",
            "shortName": "hackerone"
          },
          "references": [
            {
              "url": "https://support.plesk.com/hc/en-us/articles/41178305151255-Vulnerability-in-Plesk-XML-API-Cleartext-FTP-Password-Exposure"
            }
          ]
        }
      },
      "cveMetadata": {
        "assignerOrgId": "36234546-b8fa-4601-9d6f-f4e334aa8ea1",
        "assignerShortName": "hackerone",
        "cveId": "CVE-2026-56843",
        "datePublished": "2026-07-08T00:15:43.120Z",
        "dateReserved": "2026-06-23T15:00:03.632Z",
        "dateUpdated": "2026-07-08T13:04:17.023Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.2"
    }

    CVE-2026-48614 (GCVE-0-2026-48614)

    Vulnerability from cvelistv5 – Published: 2026-07-06 16:46 – Updated: 2026-07-06 17:39
    VLAI
    Summary
    An improper authorization vulnerability in the Plesk XML API allows an authenticated user to inject arbitrary configuration directives, resulting in arbitrary file write as root and full privilege escalation on the underlying server.
    SSVC
    Exploitation: none Automatable: no Technical Impact: total
    CISA Coordinator (v2.0.3)
    CWE
    Assigner
    Impacted products
    Vendor Product Version
    WebPros Plesk Affected: 0 , < 18.0.78 (semver)
    Create a notification for this product.
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "metrics": [
              {
                "other": {
                  "content": {
                    "id": "CVE-2026-48614",
                    "options": [
                      {
                        "Exploitation": "none"
                      },
                      {
                        "Automatable": "no"
                      },
                      {
                        "Technical Impact": "total"
                      }
                    ],
                    "role": "CISA Coordinator",
                    "timestamp": "2026-07-06T17:38:57.574170Z",
                    "version": "2.0.3"
                  },
                  "type": "ssvc"
                }
              }
            ],
            "providerMetadata": {
              "dateUpdated": "2026-07-06T17:39:05.008Z",
              "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
              "shortName": "CISA-ADP"
            },
            "title": "CISA ADP Vulnrichment"
          }
        ],
        "cna": {
          "affected": [
            {
              "defaultStatus": "unaffected",
              "product": "Plesk",
              "vendor": "WebPros",
              "versions": [
                {
                  "lessThan": "18.0.78",
                  "status": "affected",
                  "version": "0",
                  "versionType": "semver"
                }
              ]
            }
          ],
          "descriptions": [
            {
              "lang": "en",
              "value": "An improper authorization vulnerability in the Plesk XML API allows an authenticated user to inject arbitrary configuration directives, resulting in arbitrary file write as root and full privilege escalation on the underlying server."
            }
          ],
          "metrics": [
            {
              "cvssV3_1": {
                "baseScore": 9.9,
                "baseSeverity": "CRITICAL",
                "vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H",
                "version": "3.1"
              }
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "cweId": "CWE-94",
                  "description": "CWE-94 Code Injection",
                  "lang": "en",
                  "type": "CWE"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2026-07-06T16:46:05.644Z",
            "orgId": "36234546-b8fa-4601-9d6f-f4e334aa8ea1",
            "shortName": "hackerone"
          },
          "references": [
            {
              "url": "https://support.plesk.com/hc/en-us/articles/41171817973143-Vulnerability-in-Plesk-XML-API"
            }
          ]
        }
      },
      "cveMetadata": {
        "assignerOrgId": "36234546-b8fa-4601-9d6f-f4e334aa8ea1",
        "assignerShortName": "hackerone",
        "cveId": "CVE-2026-48614",
        "datePublished": "2026-07-06T16:46:05.644Z",
        "dateReserved": "2026-05-22T15:00:09.276Z",
        "dateUpdated": "2026-07-06T17:39:05.008Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.2"
    }

    CVE-2026-47365 (GCVE-0-2026-47365)

    Vulnerability from cvelistv5 – Published: 2026-06-12 02:27 – Updated: 2026-06-12 15:34
    VLAI
    Summary
    Argument injection vulnerability in WordPress Toolkit before 6.11.0 as used in cPanel & WHM, allows remote authenticated users to bypass cross-tenant authorization and execute arbitrary wp-toolkit CLI commands as another account.
    SSVC
    Exploitation: none Automatable: no Technical Impact: total
    CISA Coordinator (v2.0.3)
    CWE
    • CWE-88 - Improper Neutralization of Argument Delimiters in a Command ('Argument Injection')
    Assigner
    Impacted products
    Vendor Product Version
    WebPros WordPress-Toolkit Affected: 0 , < 6.11.0 (semver)
    Create a notification for this product.
    Credits
    Georgii Shutiaev
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "metrics": [
              {
                "other": {
                  "content": {
                    "id": "CVE-2026-47365",
                    "options": [
                      {
                        "Exploitation": "none"
                      },
                      {
                        "Automatable": "no"
                      },
                      {
                        "Technical Impact": "total"
                      }
                    ],
                    "role": "CISA Coordinator",
                    "timestamp": "2026-06-12T15:27:59.051921Z",
                    "version": "2.0.3"
                  },
                  "type": "ssvc"
                }
              }
            ],
            "providerMetadata": {
              "dateUpdated": "2026-06-12T15:34:38.290Z",
              "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
              "shortName": "CISA-ADP"
            },
            "title": "CISA ADP Vulnrichment"
          }
        ],
        "cna": {
          "affected": [
            {
              "defaultStatus": "unaffected",
              "product": "WordPress-Toolkit",
              "vendor": "WebPros",
              "versions": [
                {
                  "lessThan": "6.11.0",
                  "status": "affected",
                  "version": "0",
                  "versionType": "semver"
                }
              ]
            }
          ],
          "credits": [
            {
              "lang": "en",
              "type": "reporter",
              "value": "Georgii Shutiaev"
            }
          ],
          "descriptions": [
            {
              "lang": "en",
              "value": "Argument injection vulnerability in WordPress Toolkit before 6.11.0 as used in cPanel \u0026 WHM, allows remote authenticated users to bypass cross-tenant authorization and execute arbitrary wp-toolkit CLI commands as another account."
            }
          ],
          "metrics": [
            {
              "cvssV3_1": {
                "baseScore": 9.9,
                "baseSeverity": "CRITICAL",
                "vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H",
                "version": "3.1"
              }
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "cweId": "CWE-88",
                  "description": "CWE-88 Improper Neutralization of Argument Delimiters in a Command (\u0027Argument Injection\u0027)",
                  "lang": "en",
                  "type": "CWE"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2026-06-12T02:27:43.397Z",
            "orgId": "36234546-b8fa-4601-9d6f-f4e334aa8ea1",
            "shortName": "hackerone"
          },
          "references": [
            {
              "url": "https://support.cpanel.net/hc/en-us/articles/41004584983703-WP-Toolkit-CVE-2026-47365"
            }
          ]
        }
      },
      "cveMetadata": {
        "assignerOrgId": "36234546-b8fa-4601-9d6f-f4e334aa8ea1",
        "assignerShortName": "hackerone",
        "cveId": "CVE-2026-47365",
        "datePublished": "2026-06-12T02:27:43.397Z",
        "dateReserved": "2026-05-19T15:00:09.320Z",
        "dateUpdated": "2026-06-12T15:34:38.290Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.2"
    }

    CVE-2026-44962 (GCVE-0-2026-44962)

    Vulnerability from cvelistv5 – Published: 2026-05-29 15:41 – Updated: 2026-05-29 16:43
    VLAI
    Summary
    Plesk contains an XPath injection vulnerability in the APS Application Catalog search functionality, where user-supplied input is interpolated into XPath queries without proper sanitization. This allows an authenticated, low-privileged user to execute arbitrary operating system commands on the server, resulting in local privilege escalation.
    SSVC
    Exploitation: none Automatable: no Technical Impact: total
    CISA Coordinator (v2.0.3)
    CWE
    • CWE-643 - Improper Neutralization of Data within XPath Expressions ('XPath Injection')
    Assigner
    Impacted products
    Vendor Product Version
    WebPros Plesk Affected: 18.0.75.1 , < 18.0.75.1 (semver)
    Affected: 18.0.76.2 , < 18.0.76.2 (semver)
    Create a notification for this product.
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "metrics": [
              {
                "other": {
                  "content": {
                    "id": "CVE-2026-44962",
                    "options": [
                      {
                        "Exploitation": "none"
                      },
                      {
                        "Automatable": "no"
                      },
                      {
                        "Technical Impact": "total"
                      }
                    ],
                    "role": "CISA Coordinator",
                    "timestamp": "2026-05-29T16:43:11.003611Z",
                    "version": "2.0.3"
                  },
                  "type": "ssvc"
                }
              }
            ],
            "providerMetadata": {
              "dateUpdated": "2026-05-29T16:43:18.000Z",
              "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
              "shortName": "CISA-ADP"
            },
            "title": "CISA ADP Vulnrichment"
          }
        ],
        "cna": {
          "affected": [
            {
              "defaultStatus": "unaffected",
              "product": "Plesk",
              "vendor": "WebPros",
              "versions": [
                {
                  "lessThan": "18.0.75.1",
                  "status": "affected",
                  "version": "18.0.75.1",
                  "versionType": "semver"
                },
                {
                  "lessThan": "18.0.76.2",
                  "status": "affected",
                  "version": "18.0.76.2",
                  "versionType": "semver"
                }
              ]
            }
          ],
          "descriptions": [
            {
              "lang": "en",
              "value": "Plesk contains an XPath injection vulnerability in the APS Application Catalog search functionality, where user-supplied input is interpolated into XPath queries without proper sanitization. This allows an authenticated, low-privileged user to execute arbitrary operating system commands on the server, resulting in local privilege escalation."
            }
          ],
          "metrics": [
            {
              "cvssV3_1": {
                "baseScore": 10,
                "baseSeverity": "CRITICAL",
                "vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H",
                "version": "3.1"
              }
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "cweId": "CWE-643",
                  "description": "CWE-643 Improper Neutralization of Data within XPath Expressions (\u0027XPath Injection\u0027)",
                  "lang": "en",
                  "type": "CWE"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2026-05-29T15:41:23.795Z",
            "orgId": "36234546-b8fa-4601-9d6f-f4e334aa8ea1",
            "shortName": "hackerone"
          },
          "references": [
            {
              "url": "https://support.plesk.com/hc/en-us/articles/38633651286679-Vulnerability-CVE-2026-44962-in-Plesk-s-APS-Catalog"
            }
          ]
        }
      },
      "cveMetadata": {
        "assignerOrgId": "36234546-b8fa-4601-9d6f-f4e334aa8ea1",
        "assignerShortName": "hackerone",
        "cveId": "CVE-2026-44962",
        "datePublished": "2026-05-29T15:41:23.795Z",
        "dateReserved": "2026-05-08T15:00:02.447Z",
        "dateUpdated": "2026-05-29T16:43:18.000Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.2"
    }

    CVE-2026-32999 (GCVE-0-2026-32999)

    Vulnerability from cvelistv5 – Published: 2026-05-28 04:01 – Updated: 2026-05-28 13:09
    VLAI
    Summary
    Insufficient character filtering in backup agent signing module on Comet Backup server allows authenticated tenant administrator to execute an arbitrary code on behalf of a privileged user on the affected server and connected devices.
    SSVC
    Exploitation: none Automatable: no Technical Impact: total
    CISA Coordinator (v2.0.3)
    CWE
    Assigner
    Impacted products
    Vendor Product Version
    WebPros Comet Backup Affected: 0 , < 26.4.3 (semver)
    Affected: 0 , < 26.5.0 (semver)
    Create a notification for this product.
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "metrics": [
              {
                "other": {
                  "content": {
                    "id": "CVE-2026-32999",
                    "options": [
                      {
                        "Exploitation": "none"
                      },
                      {
                        "Automatable": "no"
                      },
                      {
                        "Technical Impact": "total"
                      }
                    ],
                    "role": "CISA Coordinator",
                    "timestamp": "2026-05-28T13:09:12.226918Z",
                    "version": "2.0.3"
                  },
                  "type": "ssvc"
                }
              }
            ],
            "providerMetadata": {
              "dateUpdated": "2026-05-28T13:09:20.180Z",
              "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
              "shortName": "CISA-ADP"
            },
            "title": "CISA ADP Vulnrichment"
          }
        ],
        "cna": {
          "affected": [
            {
              "defaultStatus": "unaffected",
              "product": "Comet Backup",
              "vendor": "WebPros",
              "versions": [
                {
                  "lessThan": "26.4.3",
                  "status": "affected",
                  "version": "0",
                  "versionType": "semver"
                },
                {
                  "lessThan": "26.5.0",
                  "status": "affected",
                  "version": "0",
                  "versionType": "semver"
                }
              ]
            }
          ],
          "descriptions": [
            {
              "lang": "en",
              "value": "Insufficient character filtering in backup agent signing module on Comet Backup server allows authenticated tenant administrator to execute an arbitrary code on behalf of a privileged user on the affected server and connected devices."
            }
          ],
          "metrics": [
            {
              "cvssV3_1": {
                "baseScore": 9.1,
                "baseSeverity": "CRITICAL",
                "vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:C/C:H/I:H/A:H",
                "version": "3.1"
              }
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "cweId": "CWE-94",
                  "description": "CWE-94 Code Injection",
                  "lang": "en",
                  "type": "CWE"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2026-05-28T04:01:38.421Z",
            "orgId": "36234546-b8fa-4601-9d6f-f4e334aa8ea1",
            "shortName": "hackerone"
          },
          "references": [
            {
              "url": "https://support.cometbackup.com/hc/en-us/articles/40655100268439--CVE-2026-32999-RCE-on-Comet-Server-via-branding-configuration"
            }
          ]
        }
      },
      "cveMetadata": {
        "assignerOrgId": "36234546-b8fa-4601-9d6f-f4e334aa8ea1",
        "assignerShortName": "hackerone",
        "cveId": "CVE-2026-32999",
        "datePublished": "2026-05-28T04:01:38.421Z",
        "dateReserved": "2026-03-17T15:00:07.747Z",
        "dateUpdated": "2026-05-28T13:09:20.180Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.2"
    }

    CVE-2026-29206 (GCVE-0-2026-29206)

    Vulnerability from cvelistv5 – Published: 2026-05-13 22:07 – Updated: 2026-05-14 13:55
    VLAI
    Summary
    Insufficient sanitization of SQL queries in the `sqloptimizer` utility script allows SQL Injections on behalf of the root user if Slow Query logging is enabled.
    SSVC
    Exploitation: none Automatable: no Technical Impact: total
    CISA Coordinator (v2.0.3)
    CWE
    Assigner
    Impacted products
    Vendor Product Version
    WebPros cPanel Affected: 11.136.0.0 , < 11.136.0.10 (semver)
    Affected: 11.134.0.0 , < 11.134.0.26 (semver)
    Affected: 11.132.0.0 , < 11.132.0.32 (semver)
    Affected: 11.130.0.0 , < 11.130.0.23 (semver)
    Affected: 11.126.0.0 , < 11.126.0.59 (semver)
    Affected: 11.124.0.0 , < 11.124.0.38 (semver)
    Affected: 11.118.0.0 , < 11.118.0.67 (semver)
    Affected: 11.110.0.0 , < 11.110.0.119 (semver)
    Affected: 11.102.0.0 , < 11.102.0.42 (semver)
    Affected: 11.94.0.0 , < 11.94.0.31 (semver)
    Affected: 11.30.0.0 , < 11.86.0.44 (semver)
    Create a notification for this product.
    WebPros WP Squared Affected: 11.136.1.0 , < 11.136.1.12 (semver)
    Create a notification for this product.
    WebPros cPanel (CloudLinux 6, CentOS 6) Affected: 11.110.0.0 , < 11.110.0.118 (semver)
    Create a notification for this product.
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "metrics": [
              {
                "other": {
                  "content": {
                    "id": "CVE-2026-29206",
                    "options": [
                      {
                        "Exploitation": "none"
                      },
                      {
                        "Automatable": "no"
                      },
                      {
                        "Technical Impact": "total"
                      }
                    ],
                    "role": "CISA Coordinator",
                    "timestamp": "2026-05-14T13:55:04.846635Z",
                    "version": "2.0.3"
                  },
                  "type": "ssvc"
                }
              }
            ],
            "providerMetadata": {
              "dateUpdated": "2026-05-14T13:55:12.266Z",
              "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
              "shortName": "CISA-ADP"
            },
            "title": "CISA ADP Vulnrichment"
          }
        ],
        "cna": {
          "affected": [
            {
              "defaultStatus": "unaffected",
              "product": "cPanel",
              "vendor": "WebPros",
              "versions": [
                {
                  "lessThan": "11.136.0.10",
                  "status": "affected",
                  "version": "11.136.0.0",
                  "versionType": "semver"
                },
                {
                  "lessThan": "11.134.0.26",
                  "status": "affected",
                  "version": "11.134.0.0",
                  "versionType": "semver"
                },
                {
                  "lessThan": "11.132.0.32",
                  "status": "affected",
                  "version": "11.132.0.0",
                  "versionType": "semver"
                },
                {
                  "lessThan": "11.130.0.23",
                  "status": "affected",
                  "version": "11.130.0.0",
                  "versionType": "semver"
                },
                {
                  "lessThan": "11.126.0.59",
                  "status": "affected",
                  "version": "11.126.0.0",
                  "versionType": "semver"
                },
                {
                  "lessThan": "11.124.0.38",
                  "status": "affected",
                  "version": "11.124.0.0",
                  "versionType": "semver"
                },
                {
                  "lessThan": "11.118.0.67",
                  "status": "affected",
                  "version": "11.118.0.0",
                  "versionType": "semver"
                },
                {
                  "lessThan": "11.110.0.119",
                  "status": "affected",
                  "version": "11.110.0.0",
                  "versionType": "semver"
                },
                {
                  "lessThan": "11.102.0.42",
                  "status": "affected",
                  "version": "11.102.0.0",
                  "versionType": "semver"
                },
                {
                  "lessThan": "11.94.0.31",
                  "status": "affected",
                  "version": "11.94.0.0",
                  "versionType": "semver"
                },
                {
                  "lessThan": "11.86.0.44",
                  "status": "affected",
                  "version": "11.30.0.0",
                  "versionType": "semver"
                }
              ]
            },
            {
              "defaultStatus": "unaffected",
              "product": "WP Squared",
              "vendor": "WebPros",
              "versions": [
                {
                  "lessThan": "11.136.1.12",
                  "status": "affected",
                  "version": "11.136.1.0",
                  "versionType": "semver"
                }
              ]
            },
            {
              "defaultStatus": "unaffected",
              "product": "cPanel (CloudLinux 6, CentOS 6)",
              "vendor": "WebPros",
              "versions": [
                {
                  "lessThan": "11.110.0.118",
                  "status": "affected",
                  "version": "11.110.0.0",
                  "versionType": "semver"
                }
              ]
            }
          ],
          "descriptions": [
            {
              "lang": "en",
              "value": "Insufficient sanitization of SQL queries in the `sqloptimizer` utility script allows SQL Injections on behalf of the root user if Slow Query logging is enabled."
            }
          ],
          "metrics": [
            {
              "cvssV3_1": {
                "baseScore": 8.1,
                "baseSeverity": "HIGH",
                "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:H/A:H",
                "version": "3.1"
              }
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "cweId": "CWE-89",
                  "description": "CWE-89 SQL Injection",
                  "lang": "en",
                  "type": "CWE"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2026-05-13T22:07:16.256Z",
            "orgId": "36234546-b8fa-4601-9d6f-f4e334aa8ea1",
            "shortName": "hackerone"
          },
          "references": [
            {
              "url": "https://support.cpanel.net/hc/en-us/articles/40437213099159-Security-CVE-2026-29206-cPanel-WHM-WP2-Security-Update-May-13-2026"
            }
          ]
        }
      },
      "cveMetadata": {
        "assignerOrgId": "36234546-b8fa-4601-9d6f-f4e334aa8ea1",
        "assignerShortName": "hackerone",
        "cveId": "CVE-2026-29206",
        "datePublished": "2026-05-13T22:07:16.256Z",
        "dateReserved": "2026-03-04T15:00:09.267Z",
        "dateUpdated": "2026-05-14T13:55:12.266Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.2"
    }

    CVE-2026-32991 (GCVE-0-2026-32991)

    Vulnerability from cvelistv5 – Published: 2026-05-13 22:07 – Updated: 2026-05-14 13:11
    VLAI
    Summary
    Improper authorization checks of team members privileges allow a team member to escalate privileges to the team owner account.
    SSVC
    Exploitation: none Automatable: no Technical Impact: partial
    CISA Coordinator (v2.0.3)
    CWE
    • CWE-863 - Incorrect Authorization
    Assigner
    Impacted products
    Vendor Product Version
    WebPros cPanel Affected: 11.136.0.0 , < 11.136.0.10 (semver)
    Affected: 11.134.0.0 , < 11.134.0.26 (semver)
    Affected: 11.132.0.0 , < 11.132.0.32 (semver)
    Affected: 11.130.0.0 , < 11.130.0.23 (semver)
    Affected: 11.126.0.0 , < 11.126.0.59 (semver)
    Affected: 11.124.0.0 , < 11.124.0.38 (semver)
    Affected: 11.118.0.0 , < 11.118.0.67 (semver)
    Affected: 11.110.0.0 , < 11.110.0.119 (semver)
    Create a notification for this product.
    WebPros WP Squared Affected: 11.136.1.0 , < 11.136.1.12 (semver)
    Create a notification for this product.
    WebPros cPanel (CloudLinux 6, CentOS 6) Affected: 11.110.0.0 , < 11.110.0.118 (semver)
    Create a notification for this product.
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "metrics": [
              {
                "other": {
                  "content": {
                    "id": "CVE-2026-32991",
                    "options": [
                      {
                        "Exploitation": "none"
                      },
                      {
                        "Automatable": "no"
                      },
                      {
                        "Technical Impact": "partial"
                      }
                    ],
                    "role": "CISA Coordinator",
                    "timestamp": "2026-05-14T13:11:15.440259Z",
                    "version": "2.0.3"
                  },
                  "type": "ssvc"
                }
              }
            ],
            "providerMetadata": {
              "dateUpdated": "2026-05-14T13:11:23.622Z",
              "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
              "shortName": "CISA-ADP"
            },
            "title": "CISA ADP Vulnrichment"
          }
        ],
        "cna": {
          "affected": [
            {
              "defaultStatus": "unaffected",
              "product": "cPanel",
              "vendor": "WebPros",
              "versions": [
                {
                  "lessThan": "11.136.0.10",
                  "status": "affected",
                  "version": "11.136.0.0",
                  "versionType": "semver"
                },
                {
                  "lessThan": "11.134.0.26",
                  "status": "affected",
                  "version": "11.134.0.0",
                  "versionType": "semver"
                },
                {
                  "lessThan": "11.132.0.32",
                  "status": "affected",
                  "version": "11.132.0.0",
                  "versionType": "semver"
                },
                {
                  "lessThan": "11.130.0.23",
                  "status": "affected",
                  "version": "11.130.0.0",
                  "versionType": "semver"
                },
                {
                  "lessThan": "11.126.0.59",
                  "status": "affected",
                  "version": "11.126.0.0",
                  "versionType": "semver"
                },
                {
                  "lessThan": "11.124.0.38",
                  "status": "affected",
                  "version": "11.124.0.0",
                  "versionType": "semver"
                },
                {
                  "lessThan": "11.118.0.67",
                  "status": "affected",
                  "version": "11.118.0.0",
                  "versionType": "semver"
                },
                {
                  "lessThan": "11.110.0.119",
                  "status": "affected",
                  "version": "11.110.0.0",
                  "versionType": "semver"
                }
              ]
            },
            {
              "defaultStatus": "unaffected",
              "product": "WP Squared",
              "vendor": "WebPros",
              "versions": [
                {
                  "lessThan": "11.136.1.12",
                  "status": "affected",
                  "version": "11.136.1.0",
                  "versionType": "semver"
                }
              ]
            },
            {
              "defaultStatus": "unaffected",
              "product": "cPanel (CloudLinux 6, CentOS 6)",
              "vendor": "WebPros",
              "versions": [
                {
                  "lessThan": "11.110.0.118",
                  "status": "affected",
                  "version": "11.110.0.0",
                  "versionType": "semver"
                }
              ]
            }
          ],
          "descriptions": [
            {
              "lang": "en",
              "value": "Improper authorization checks of team members privileges allow a team member to escalate privileges to the team owner account."
            }
          ],
          "metrics": [
            {
              "cvssV3_1": {
                "baseScore": 7.1,
                "baseSeverity": "HIGH",
                "vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:H/A:N",
                "version": "3.1"
              }
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "cweId": "CWE-863",
                  "description": "CWE-863 Incorrect Authorization",
                  "lang": "en",
                  "type": "CWE"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2026-05-13T22:07:16.151Z",
            "orgId": "36234546-b8fa-4601-9d6f-f4e334aa8ea1",
            "shortName": "hackerone"
          },
          "references": [
            {
              "url": "https://support.cpanel.net/hc/en-us/articles/40437254183959-Security-CVE-2026-32991-cPanel-WHM-WP2-Security-Update-May-13-2026"
            }
          ]
        }
      },
      "cveMetadata": {
        "assignerOrgId": "36234546-b8fa-4601-9d6f-f4e334aa8ea1",
        "assignerShortName": "hackerone",
        "cveId": "CVE-2026-32991",
        "datePublished": "2026-05-13T22:07:16.151Z",
        "dateReserved": "2026-03-17T15:00:07.746Z",
        "dateUpdated": "2026-05-14T13:11:23.622Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.2"
    }

    CVE-2026-29205 (GCVE-0-2026-29205)

    Vulnerability from cvelistv5 – Published: 2026-05-13 22:06 – Updated: 2026-05-14 13:13
    VLAI
    Summary
    Incorrect privileges management and insufficient path filtering allow to read arbitrary file on the server via the cpdavd attachment download endpoints.
    SSVC
    Exploitation: none Automatable: yes Technical Impact: partial
    CISA Coordinator (v2.0.3)
    CWE
    • CWE-250 - Execution with Unnecessary Privileges
    Assigner
    Impacted products
    Vendor Product Version
    WebPros cPanel Affected: 11.136.0.0 , < 11.136.0.10 (semver)
    Affected: 11.134.0.0 , < 11.134.0.26 (semver)
    Affected: 11.132.0.0 , < 11.132.0.32 (semver)
    Affected: 11.130.0.0 , < 11.130.0.23 (semver)
    Affected: 11.126.0.0 , < 11.126.0.59 (semver)
    Affected: 11.120.0.0 , < 11.124.0.38 (semver)
    Create a notification for this product.
    WebPros WP Squared Affected: 11.120.1.0 , < 11.136.1.12 (semver)
    Create a notification for this product.
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "metrics": [
              {
                "other": {
                  "content": {
                    "id": "CVE-2026-29205",
                    "options": [
                      {
                        "Exploitation": "none"
                      },
                      {
                        "Automatable": "yes"
                      },
                      {
                        "Technical Impact": "partial"
                      }
                    ],
                    "role": "CISA Coordinator",
                    "timestamp": "2026-05-14T13:13:34.728020Z",
                    "version": "2.0.3"
                  },
                  "type": "ssvc"
                }
              }
            ],
            "providerMetadata": {
              "dateUpdated": "2026-05-14T13:13:52.380Z",
              "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
              "shortName": "CISA-ADP"
            },
            "title": "CISA ADP Vulnrichment"
          }
        ],
        "cna": {
          "affected": [
            {
              "defaultStatus": "unaffected",
              "product": "cPanel",
              "vendor": "WebPros",
              "versions": [
                {
                  "lessThan": "11.136.0.10",
                  "status": "affected",
                  "version": "11.136.0.0",
                  "versionType": "semver"
                },
                {
                  "lessThan": "11.134.0.26",
                  "status": "affected",
                  "version": "11.134.0.0",
                  "versionType": "semver"
                },
                {
                  "lessThan": "11.132.0.32",
                  "status": "affected",
                  "version": "11.132.0.0",
                  "versionType": "semver"
                },
                {
                  "lessThan": "11.130.0.23",
                  "status": "affected",
                  "version": "11.130.0.0",
                  "versionType": "semver"
                },
                {
                  "lessThan": "11.126.0.59",
                  "status": "affected",
                  "version": "11.126.0.0",
                  "versionType": "semver"
                },
                {
                  "lessThan": "11.124.0.38",
                  "status": "affected",
                  "version": "11.120.0.0",
                  "versionType": "semver"
                }
              ]
            },
            {
              "defaultStatus": "unaffected",
              "product": "WP Squared",
              "vendor": "WebPros",
              "versions": [
                {
                  "lessThan": "11.136.1.12",
                  "status": "affected",
                  "version": "11.120.1.0",
                  "versionType": "semver"
                }
              ]
            }
          ],
          "descriptions": [
            {
              "lang": "en",
              "value": "Incorrect privileges management and insufficient path filtering allow to read arbitrary file on the server via the cpdavd attachment download endpoints."
            }
          ],
          "metrics": [
            {
              "cvssV3_1": {
                "baseScore": 8.6,
                "baseSeverity": "HIGH",
                "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:L/A:L",
                "version": "3.1"
              }
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "cweId": "CWE-250",
                  "description": "CWE-250 Execution with Unnecessary Privileges",
                  "lang": "en",
                  "type": "CWE"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2026-05-13T22:06:04.220Z",
            "orgId": "36234546-b8fa-4601-9d6f-f4e334aa8ea1",
            "shortName": "hackerone"
          },
          "references": [
            {
              "url": "https://support.cpanel.net/hc/en-us/articles/40437020299927-Security-CVE-2026-29205-cPanel-WHM-WP2-Security-Update-May-13-2026"
            }
          ]
        }
      },
      "cveMetadata": {
        "assignerOrgId": "36234546-b8fa-4601-9d6f-f4e334aa8ea1",
        "assignerShortName": "hackerone",
        "cveId": "CVE-2026-29205",
        "datePublished": "2026-05-13T22:06:04.220Z",
        "dateReserved": "2026-03-04T15:00:09.267Z",
        "dateUpdated": "2026-05-14T13:13:52.380Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.2"
    }

    CVE-2026-32992 (GCVE-0-2026-32992)

    Vulnerability from cvelistv5 – Published: 2026-05-13 22:06 – Updated: 2026-05-14 13:13
    VLAI
    Summary
    SSL verification is disabled in the DNS Cluster system. This could allow for a malicious server to man-in-the-middle the request and capture credentials.
    SSVC
    Exploitation: none Automatable: yes Technical Impact: partial
    CISA Coordinator (v2.0.3)
    CWE
    • CWE-295 - Improper Certificate Validation
    Assigner
    Impacted products
    Vendor Product Version
    WebPros cPanel Affected: 11.136.0.0 , < 11.136.0.10 (semver)
    Affected: 11.134.0.0 , < 11.134.0.26 (semver)
    Affected: 11.132.0.0 , < 11.132.0.32 (semver)
    Affected: 11.130.0.0 , < 11.130.0.23 (semver)
    Affected: 11.126.0.0 , < 11.126.0.59 (semver)
    Create a notification for this product.
    WebPros WP Squared Affected: 11.126.1.0 , < 11.136.1.12 (semver)
    Create a notification for this product.
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "metrics": [
              {
                "other": {
                  "content": {
                    "id": "CVE-2026-32992",
                    "options": [
                      {
                        "Exploitation": "none"
                      },
                      {
                        "Automatable": "yes"
                      },
                      {
                        "Technical Impact": "partial"
                      }
                    ],
                    "role": "CISA Coordinator",
                    "timestamp": "2026-05-14T13:12:58.222950Z",
                    "version": "2.0.3"
                  },
                  "type": "ssvc"
                }
              }
            ],
            "providerMetadata": {
              "dateUpdated": "2026-05-14T13:13:06.565Z",
              "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
              "shortName": "CISA-ADP"
            },
            "title": "CISA ADP Vulnrichment"
          }
        ],
        "cna": {
          "affected": [
            {
              "defaultStatus": "unaffected",
              "product": "cPanel",
              "vendor": "WebPros",
              "versions": [
                {
                  "lessThan": "11.136.0.10",
                  "status": "affected",
                  "version": "11.136.0.0",
                  "versionType": "semver"
                },
                {
                  "lessThan": "11.134.0.26",
                  "status": "affected",
                  "version": "11.134.0.0",
                  "versionType": "semver"
                },
                {
                  "lessThan": "11.132.0.32",
                  "status": "affected",
                  "version": "11.132.0.0",
                  "versionType": "semver"
                },
                {
                  "lessThan": "11.130.0.23",
                  "status": "affected",
                  "version": "11.130.0.0",
                  "versionType": "semver"
                },
                {
                  "lessThan": "11.126.0.59",
                  "status": "affected",
                  "version": "11.126.0.0",
                  "versionType": "semver"
                }
              ]
            },
            {
              "defaultStatus": "unaffected",
              "product": "WP Squared",
              "vendor": "WebPros",
              "versions": [
                {
                  "lessThan": "11.136.1.12",
                  "status": "affected",
                  "version": "11.126.1.0",
                  "versionType": "semver"
                }
              ]
            }
          ],
          "descriptions": [
            {
              "lang": "en",
              "value": "SSL verification is disabled in the DNS Cluster system. This could allow for a malicious server to man-in-the-middle the request and capture credentials."
            }
          ],
          "metrics": [
            {
              "cvssV3_1": {
                "baseScore": 8.2,
                "baseSeverity": "HIGH",
                "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:L/A:N",
                "version": "3.1"
              }
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "cweId": "CWE-295",
                  "description": "CWE-295 Improper Certificate Validation",
                  "lang": "en",
                  "type": "CWE"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2026-05-13T22:06:04.157Z",
            "orgId": "36234546-b8fa-4601-9d6f-f4e334aa8ea1",
            "shortName": "hackerone"
          },
          "references": [
            {
              "url": "https://support.cpanel.net/hc/en-us/articles/40437241987607-Security-CVE-2026-32992-cPanel-WHM-WP2-Security-Update-May-13-2026"
            }
          ]
        }
      },
      "cveMetadata": {
        "assignerOrgId": "36234546-b8fa-4601-9d6f-f4e334aa8ea1",
        "assignerShortName": "hackerone",
        "cveId": "CVE-2026-32992",
        "datePublished": "2026-05-13T22:06:04.157Z",
        "dateReserved": "2026-03-17T15:00:07.746Z",
        "dateUpdated": "2026-05-14T13:13:06.565Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.2"
    }

    CVE-2026-32993 (GCVE-0-2026-32993)

    Vulnerability from cvelistv5 – Published: 2026-05-13 22:06 – Updated: 2026-05-14 13:12
    VLAI
    Summary
    Improper sanitization of the `status` query parameter of the `/unprotected/nova_error` endpoint allows unauthenticated attacker to inject arbitrary HTTP header to the response.
    SSVC
    Exploitation: none Automatable: yes Technical Impact: partial
    CISA Coordinator (v2.0.3)
    CWE
    Assigner
    Impacted products
    Vendor Product Version
    WebPros cPanel Affected: 11.132.0.0 , < 11.132.0.32 (semver)
    Affected: 11.134.0.0 , < 11.134.0.26 (semver)
    Affected: 11.136.0.0 , < 11.136.0.10 (semver)
    Create a notification for this product.
    WebPros WP Squared Affected: 11.132.1.0 , < 11.136.1.12 (semver)
    Create a notification for this product.
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "metrics": [
              {
                "other": {
                  "content": {
                    "id": "CVE-2026-32993",
                    "options": [
                      {
                        "Exploitation": "none"
                      },
                      {
                        "Automatable": "yes"
                      },
                      {
                        "Technical Impact": "partial"
                      }
                    ],
                    "role": "CISA Coordinator",
                    "timestamp": "2026-05-14T13:12:12.439407Z",
                    "version": "2.0.3"
                  },
                  "type": "ssvc"
                }
              }
            ],
            "providerMetadata": {
              "dateUpdated": "2026-05-14T13:12:33.758Z",
              "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
              "shortName": "CISA-ADP"
            },
            "title": "CISA ADP Vulnrichment"
          }
        ],
        "cna": {
          "affected": [
            {
              "defaultStatus": "unaffected",
              "product": "cPanel",
              "vendor": "WebPros",
              "versions": [
                {
                  "lessThan": "11.132.0.32",
                  "status": "affected",
                  "version": "11.132.0.0",
                  "versionType": "semver"
                },
                {
                  "lessThan": "11.134.0.26",
                  "status": "affected",
                  "version": "11.134.0.0",
                  "versionType": "semver"
                },
                {
                  "lessThan": "11.136.0.10",
                  "status": "affected",
                  "version": "11.136.0.0",
                  "versionType": "semver"
                }
              ]
            },
            {
              "defaultStatus": "unaffected",
              "product": "WP Squared",
              "vendor": "WebPros",
              "versions": [
                {
                  "lessThan": "11.136.1.12",
                  "status": "affected",
                  "version": "11.132.1.0",
                  "versionType": "semver"
                }
              ]
            }
          ],
          "descriptions": [
            {
              "lang": "en",
              "value": "Improper sanitization of the `status` query parameter of the `/unprotected/nova_error` endpoint allows unauthenticated attacker to inject arbitrary HTTP header to the response."
            }
          ],
          "metrics": [
            {
              "cvssV3_1": {
                "baseScore": 8.3,
                "baseSeverity": "HIGH",
                "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:L/I:L/A:L",
                "version": "3.1"
              }
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "cweId": "CWE-93",
                  "description": "CWE-93 CRLF Injection",
                  "lang": "en",
                  "type": "CWE"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2026-05-13T22:06:04.114Z",
            "orgId": "36234546-b8fa-4601-9d6f-f4e334aa8ea1",
            "shortName": "hackerone"
          },
          "references": [
            {
              "url": "https://support.cpanel.net/hc/en-us/articles/40437313190295-Security-CVE-2026-32993-cPanel-WHM-WP2-Security-Update-May-13-2026"
            }
          ]
        }
      },
      "cveMetadata": {
        "assignerOrgId": "36234546-b8fa-4601-9d6f-f4e334aa8ea1",
        "assignerShortName": "hackerone",
        "cveId": "CVE-2026-32993",
        "datePublished": "2026-05-13T22:06:04.114Z",
        "dateReserved": "2026-03-17T15:00:07.746Z",
        "dateUpdated": "2026-05-14T13:12:33.758Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.2"
    }

    CVE-2026-29204 (GCVE-0-2026-29204)

    Vulnerability from cvelistv5 – Published: 2026-05-12 17:46 – Updated: 2026-05-12 21:57
    VLAI
    Summary
    Insufficient ownership check in `clientarea.php` allows an authenticated client area user to submit requests using another user’s `addonId` without any ownership validation leading to unauthorized access to the victim's account.
    SSVC
    Exploitation: none Automatable: yes Technical Impact: total
    CISA Coordinator (v2.0.3)
    CWE
    • CWE-639 - Insecure Direct Object Reference (IDOR)
    Assigner
    Impacted products
    Vendor Product Version
    WebPros WHMCS Affected: 7.4.0 , ≤ 18.12.2 (semver)
    Affected: 18.13.0 , < 18.13.3 (semver)
    Affected: 9.0.0 , < 9.0.4 (semver)
    Create a notification for this product.
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "metrics": [
              {
                "other": {
                  "content": {
                    "id": "CVE-2026-29204",
                    "options": [
                      {
                        "Exploitation": "none"
                      },
                      {
                        "Automatable": "yes"
                      },
                      {
                        "Technical Impact": "total"
                      }
                    ],
                    "role": "CISA Coordinator",
                    "timestamp": "2026-05-12T21:10:39.672400Z",
                    "version": "2.0.3"
                  },
                  "type": "ssvc"
                }
              }
            ],
            "providerMetadata": {
              "dateUpdated": "2026-05-12T21:13:06.404Z",
              "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
              "shortName": "CISA-ADP"
            },
            "title": "CISA ADP Vulnrichment"
          }
        ],
        "cna": {
          "affected": [
            {
              "defaultStatus": "unaffected",
              "product": "WHMCS",
              "vendor": "WebPros",
              "versions": [
                {
                  "lessThanOrEqual": "18.12.2",
                  "status": "affected",
                  "version": "7.4.0",
                  "versionType": "semver"
                },
                {
                  "lessThan": "18.13.3",
                  "status": "affected",
                  "version": "18.13.0",
                  "versionType": "semver"
                },
                {
                  "lessThan": "9.0.4",
                  "status": "affected",
                  "version": "9.0.0",
                  "versionType": "semver"
                }
              ]
            }
          ],
          "descriptions": [
            {
              "lang": "en",
              "value": "Insufficient ownership check in `clientarea.php` allows an authenticated client area user to submit requests using another user\u2019s `addonId` without any ownership validation leading to unauthorized access to the victim\u0027s account."
            }
          ],
          "metrics": [
            {
              "cvssV3_1": {
                "baseScore": 9.1,
                "baseSeverity": "CRITICAL",
                "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N",
                "version": "3.1"
              }
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "cweId": "CWE-639",
                  "description": "CWE-639 Insecure Direct Object Reference (IDOR)",
                  "lang": "en",
                  "type": "CWE"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2026-05-12T21:57:08.277Z",
            "orgId": "36234546-b8fa-4601-9d6f-f4e334aa8ea1",
            "shortName": "hackerone"
          },
          "references": [
            {
              "url": "https://help.whmcs.com/m/125386/l/2073908-cve-2026-29204"
            }
          ]
        }
      },
      "cveMetadata": {
        "assignerOrgId": "36234546-b8fa-4601-9d6f-f4e334aa8ea1",
        "assignerShortName": "hackerone",
        "cveId": "CVE-2026-29204",
        "datePublished": "2026-05-12T17:46:55.152Z",
        "dateReserved": "2026-03-04T15:00:09.267Z",
        "dateUpdated": "2026-05-12T21:57:08.277Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.2"
    }

    CVE-2026-29201 (GCVE-0-2026-29201)

    Vulnerability from cvelistv5 – Published: 2026-05-08 18:51 – Updated: 2026-05-13 21:59
    VLAI
    Summary
    Insufficient input validation of the feature file name in `feature::LOADFEATUREFILE` adminbin call can cause arbitrary file read when a relative file path is passed.
    SSVC
    Exploitation: none Automatable: no Technical Impact: partial
    CISA Coordinator (v2.0.3)
    CWE
    • CWE-23 - Relative Path Traversal
    Assigner
    Impacted products
    Vendor Product Version
    WebPros cPanel Affected: 11.136.0.0 , < 11.136.0.9 (semver)
    Affected: 11.134.0.0 , < 11.134.0.25 (semver)
    Affected: 11.132.0.0 , < 11.132.0.31 (semver)
    Affected: 11.130.0.0 , < 11.130.0.22 (semver)
    Affected: 11.126.0.0 , < 11.126.0.58 (semver)
    Affected: 11.124.0.0 , < 11.124.0.37 (semver)
    Affected: 11.118.0.0 , < 11.118.0.66 (semver)
    Affected: 11.110.0.0 , < 11.110.0.117 (semver)
    Affected: 11.102.0.0 , < 11.102.0.41 (semver)
    Affected: 11.94.0.0 , < 11.94.0.30 (semver)
    Affected: 11.86.0.0 , < 11.86.0.43 (semver)
    Create a notification for this product.
    WebPros WP Squared Affected: 11.136.1.0 , < 11.136.1.11 (semver)
    Create a notification for this product.
    WebPros cPanel (CloudLinux 6, CentOS 6) Affected: 11.110.0.0 , < 11.110.0.116 (semver)
    Create a notification for this product.
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "metrics": [
              {
                "cvssV3_1": {
                  "attackComplexity": "LOW",
                  "attackVector": "NETWORK",
                  "availabilityImpact": "NONE",
                  "baseScore": 4.3,
                  "baseSeverity": "MEDIUM",
                  "confidentialityImpact": "LOW",
                  "integrityImpact": "NONE",
                  "privilegesRequired": "LOW",
                  "scope": "UNCHANGED",
                  "userInteraction": "NONE",
                  "vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N",
                  "version": "3.1"
                }
              },
              {
                "other": {
                  "content": {
                    "id": "CVE-2026-29201",
                    "options": [
                      {
                        "Exploitation": "none"
                      },
                      {
                        "Automatable": "no"
                      },
                      {
                        "Technical Impact": "partial"
                      }
                    ],
                    "role": "CISA Coordinator",
                    "timestamp": "2026-05-08T19:52:34.386985Z",
                    "version": "2.0.3"
                  },
                  "type": "ssvc"
                }
              }
            ],
            "providerMetadata": {
              "dateUpdated": "2026-05-08T19:52:40.780Z",
              "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
              "shortName": "CISA-ADP"
            },
            "title": "CISA ADP Vulnrichment"
          }
        ],
        "cna": {
          "affected": [
            {
              "defaultStatus": "unaffected",
              "product": "cPanel",
              "vendor": "WebPros",
              "versions": [
                {
                  "lessThan": "11.136.0.9",
                  "status": "affected",
                  "version": "11.136.0.0",
                  "versionType": "semver"
                },
                {
                  "lessThan": "11.134.0.25",
                  "status": "affected",
                  "version": "11.134.0.0",
                  "versionType": "semver"
                },
                {
                  "lessThan": "11.132.0.31",
                  "status": "affected",
                  "version": "11.132.0.0",
                  "versionType": "semver"
                },
                {
                  "lessThan": "11.130.0.22",
                  "status": "affected",
                  "version": "11.130.0.0",
                  "versionType": "semver"
                },
                {
                  "lessThan": "11.126.0.58",
                  "status": "affected",
                  "version": "11.126.0.0",
                  "versionType": "semver"
                },
                {
                  "lessThan": "11.124.0.37",
                  "status": "affected",
                  "version": "11.124.0.0",
                  "versionType": "semver"
                },
                {
                  "lessThan": "11.118.0.66",
                  "status": "affected",
                  "version": "11.118.0.0",
                  "versionType": "semver"
                },
                {
                  "lessThan": "11.110.0.117",
                  "status": "affected",
                  "version": "11.110.0.0",
                  "versionType": "semver"
                },
                {
                  "lessThan": "11.102.0.41",
                  "status": "affected",
                  "version": "11.102.0.0",
                  "versionType": "semver"
                },
                {
                  "lessThan": "11.94.0.30",
                  "status": "affected",
                  "version": "11.94.0.0",
                  "versionType": "semver"
                },
                {
                  "lessThan": "11.86.0.43",
                  "status": "affected",
                  "version": "11.86.0.0",
                  "versionType": "semver"
                }
              ]
            },
            {
              "defaultStatus": "unaffected",
              "product": "WP Squared",
              "vendor": "WebPros",
              "versions": [
                {
                  "lessThan": "11.136.1.11",
                  "status": "affected",
                  "version": "11.136.1.0",
                  "versionType": "semver"
                }
              ]
            },
            {
              "defaultStatus": "unaffected",
              "product": "cPanel (CloudLinux 6, CentOS 6)",
              "vendor": "WebPros",
              "versions": [
                {
                  "lessThan": "11.110.0.116",
                  "status": "affected",
                  "version": "11.110.0.0",
                  "versionType": "semver"
                }
              ]
            }
          ],
          "descriptions": [
            {
              "lang": "en",
              "value": "Insufficient input validation of the feature file name in `feature::LOADFEATUREFILE` adminbin call can cause arbitrary file read when a relative file path is passed."
            }
          ],
          "metrics": [
            {
              "cvssV3_1": {
                "baseScore": 8.6,
                "baseSeverity": "HIGH",
                "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:L/A:L",
                "version": "3.1"
              }
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "cweId": "CWE-23",
                  "description": "CWE-23 Relative Path Traversal",
                  "lang": "en",
                  "type": "CWE"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2026-05-13T21:59:09.469Z",
            "orgId": "36234546-b8fa-4601-9d6f-f4e334aa8ea1",
            "shortName": "hackerone"
          },
          "references": [
            {
              "url": "https://support.cpanel.net/hc/en-us/articles/40311033698327-Security-CVE-2026-29201-cPanel-WHM-WP2-Security-Update-May-08-2026"
            }
          ]
        }
      },
      "cveMetadata": {
        "assignerOrgId": "36234546-b8fa-4601-9d6f-f4e334aa8ea1",
        "assignerShortName": "hackerone",
        "cveId": "CVE-2026-29201",
        "datePublished": "2026-05-08T18:51:05.803Z",
        "dateReserved": "2026-03-04T15:00:09.267Z",
        "dateUpdated": "2026-05-13T21:59:09.469Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.2"
    }

    CVE-2026-29202 (GCVE-0-2026-29202)

    Vulnerability from cvelistv5 – Published: 2026-05-08 18:51 – Updated: 2026-05-13 22:03
    VLAI
    Summary
    Insufficient input validation of the `plugin` parameter of the `create_user` plugin allows arbitrary Perl code execution on behalf of the already authenticated account's system user.
    SSVC
    Exploitation: none Automatable: no Technical Impact: total
    CISA Coordinator (v2.0.3)
    CWE
    Assigner
    Impacted products
    Vendor Product Version
    WebPros cPanel Affected: 11.136.0.0 , < 11.136.0.9 (semver)
    Affected: 11.134.0.0 , < 11.134.0.25 (semver)
    Affected: 11.132.0.0 , < 11.132.0.31 (semver)
    Affected: 11.130.0.0 , < 11.130.0.22 (semver)
    Affected: 11.126.0.0 , < 11.126.0.58 (semver)
    Affected: 11.124.0.0 , < 11.124.0.37 (semver)
    Affected: 11.118.0.0 , < 11.118.0.66 (semver)
    Affected: 11.110.0.0 , < 11.110.0.117 (semver)
    Affected: 11.102.0.0 , < 11.102.0.41 (semver)
    Affected: 11.94.0.0 , < 11.94.0.30 (semver)
    Affected: 11.86.0.0 , < 11.86.0.43 (semver)
    Create a notification for this product.
    WebPros cPanel (CloudLinux 6, CentOS 6) Affected: 11.110.0.0 , < 11.110.0.116 (semver)
    Create a notification for this product.
    WebPros WP Squared Affected: 11.136.1.0 , < 11.136.1.11 (semver)
    Create a notification for this product.
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "metrics": [
              {
                "cvssV3_1": {
                  "attackComplexity": "LOW",
                  "attackVector": "NETWORK",
                  "availabilityImpact": "HIGH",
                  "baseScore": 8.8,
                  "baseSeverity": "HIGH",
                  "confidentialityImpact": "HIGH",
                  "integrityImpact": "HIGH",
                  "privilegesRequired": "LOW",
                  "scope": "UNCHANGED",
                  "userInteraction": "NONE",
                  "vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
                  "version": "3.1"
                }
              },
              {
                "other": {
                  "content": {
                    "id": "CVE-2026-29202",
                    "options": [
                      {
                        "Exploitation": "none"
                      },
                      {
                        "Automatable": "no"
                      },
                      {
                        "Technical Impact": "total"
                      }
                    ],
                    "role": "CISA Coordinator",
                    "timestamp": "2026-05-08T00:00:00+00:00",
                    "version": "2.0.3"
                  },
                  "type": "ssvc"
                }
              }
            ],
            "providerMetadata": {
              "dateUpdated": "2026-05-09T03:56:06.386Z",
              "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
              "shortName": "CISA-ADP"
            },
            "title": "CISA ADP Vulnrichment"
          }
        ],
        "cna": {
          "affected": [
            {
              "defaultStatus": "unaffected",
              "product": "cPanel",
              "vendor": "WebPros",
              "versions": [
                {
                  "lessThan": "11.136.0.9",
                  "status": "affected",
                  "version": "11.136.0.0",
                  "versionType": "semver"
                },
                {
                  "lessThan": "11.134.0.25",
                  "status": "affected",
                  "version": "11.134.0.0",
                  "versionType": "semver"
                },
                {
                  "lessThan": "11.132.0.31",
                  "status": "affected",
                  "version": "11.132.0.0",
                  "versionType": "semver"
                },
                {
                  "lessThan": "11.130.0.22",
                  "status": "affected",
                  "version": "11.130.0.0",
                  "versionType": "semver"
                },
                {
                  "lessThan": "11.126.0.58",
                  "status": "affected",
                  "version": "11.126.0.0",
                  "versionType": "semver"
                },
                {
                  "lessThan": "11.124.0.37",
                  "status": "affected",
                  "version": "11.124.0.0",
                  "versionType": "semver"
                },
                {
                  "lessThan": "11.118.0.66",
                  "status": "affected",
                  "version": "11.118.0.0",
                  "versionType": "semver"
                },
                {
                  "lessThan": "11.110.0.117",
                  "status": "affected",
                  "version": "11.110.0.0",
                  "versionType": "semver"
                },
                {
                  "lessThan": "11.102.0.41",
                  "status": "affected",
                  "version": "11.102.0.0",
                  "versionType": "semver"
                },
                {
                  "lessThan": "11.94.0.30",
                  "status": "affected",
                  "version": "11.94.0.0",
                  "versionType": "semver"
                },
                {
                  "lessThan": "11.86.0.43",
                  "status": "affected",
                  "version": "11.86.0.0",
                  "versionType": "semver"
                }
              ]
            },
            {
              "defaultStatus": "unaffected",
              "product": "cPanel (CloudLinux 6, CentOS 6)",
              "vendor": "WebPros",
              "versions": [
                {
                  "lessThan": "11.110.0.116",
                  "status": "affected",
                  "version": "11.110.0.0",
                  "versionType": "semver"
                }
              ]
            },
            {
              "defaultStatus": "unaffected",
              "product": "WP Squared",
              "vendor": "WebPros",
              "versions": [
                {
                  "lessThan": "11.136.1.11",
                  "status": "affected",
                  "version": "11.136.1.0",
                  "versionType": "semver"
                }
              ]
            }
          ],
          "descriptions": [
            {
              "lang": "en",
              "value": "Insufficient input validation of the `plugin` parameter of the `create_user` plugin allows arbitrary Perl code execution on behalf of the already authenticated account\u0027s system user."
            }
          ],
          "metrics": [
            {
              "cvssV4_0": {
                "baseScore": 5.3,
                "baseSeverity": "MEDIUM",
                "vectorString": "CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:L/VI:L/VA:N/SC:N/SI:N/SA:N",
                "version": "4.0"
              }
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "cweId": "CWE-94",
                  "description": "CWE-94 Code Injection",
                  "lang": "en",
                  "type": "CWE"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2026-05-13T22:03:15.187Z",
            "orgId": "36234546-b8fa-4601-9d6f-f4e334aa8ea1",
            "shortName": "hackerone"
          },
          "references": [
            {
              "url": "https://support.cpanel.net/hc/en-us/articles/40311426610327-Security-CVE-2026-29202-cPanel-WHM-WP2-Security-Update-May-08-2026"
            }
          ]
        }
      },
      "cveMetadata": {
        "assignerOrgId": "36234546-b8fa-4601-9d6f-f4e334aa8ea1",
        "assignerShortName": "hackerone",
        "cveId": "CVE-2026-29202",
        "datePublished": "2026-05-08T18:51:05.585Z",
        "dateReserved": "2026-03-04T15:00:09.267Z",
        "dateUpdated": "2026-05-13T22:03:15.187Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.2"
    }

    CVE-2026-29203 (GCVE-0-2026-29203)

    Vulnerability from cvelistv5 – Published: 2026-05-08 18:51 – Updated: 2026-05-15 17:14
    VLAI
    Summary
    A chmod call in the cPanel Nova plugin's Cpanel::Nova::Connector follows symlinks, allowing setting root permissions on arbitrary system files or directories. That can cause DoS or local privilege escalation when an authenticated cPanel user places a symlink at a user-controlled legacy Nova path under their home directory.
    SSVC
    Exploitation: none Automatable: no Technical Impact: total
    CISA Coordinator (v2.0.3)
    CWE
    • CWE-61 - UNIX Symbolic Link (Symlink) Following
    Assigner
    Impacted products
    Vendor Product Version
    WebPros cPanel Affected: 11.136.0.0 , < 11.136.0.9 (semver)
    Affected: 11.134.0.0 , < 11.134.0.25 (semver)
    Affected: 11.132.0.0 , < 11.132.0.31 (semver)
    Affected: 11.130.0.0 , < 11.130.0.22 (semver)
    Affected: 11.126.0.0 , < 11.126.0.58 (semver)
    Affected: 11.124.0.0 , < 11.124.0.37 (semver)
    Affected: 11.118.0.0 , < 11.118.0.66 (semver)
    Affected: 11.110.0.0 , < 11.110.0.117 (semver)
    Affected: 11.102.0.0 , < 11.102.0.41 (semver)
    Affected: 11.94.0.0 , < 11.94.0.30 (semver)
    Affected: 11.86.0.0 , < 11.86.0.43 (semver)
    Create a notification for this product.
    WebPros cPanel (CloudLinux 6, CentOS 6) Affected: 11.110.0.0 , < 11.110.0.116 (semver)
    Create a notification for this product.
    WebPros WP Squared Affected: 11.136.1.0 , < 11.136.1.10 (semver)
    Create a notification for this product.
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "metrics": [
              {
                "cvssV3_1": {
                  "attackComplexity": "LOW",
                  "attackVector": "NETWORK",
                  "availabilityImpact": "HIGH",
                  "baseScore": 8.8,
                  "baseSeverity": "HIGH",
                  "confidentialityImpact": "HIGH",
                  "integrityImpact": "HIGH",
                  "privilegesRequired": "LOW",
                  "scope": "UNCHANGED",
                  "userInteraction": "NONE",
                  "vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
                  "version": "3.1"
                }
              },
              {
                "other": {
                  "content": {
                    "id": "CVE-2026-29203",
                    "options": [
                      {
                        "Exploitation": "none"
                      },
                      {
                        "Automatable": "no"
                      },
                      {
                        "Technical Impact": "total"
                      }
                    ],
                    "role": "CISA Coordinator",
                    "timestamp": "2026-05-08T00:00:00+00:00",
                    "version": "2.0.3"
                  },
                  "type": "ssvc"
                }
              }
            ],
            "providerMetadata": {
              "dateUpdated": "2026-05-09T03:56:05.260Z",
              "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
              "shortName": "CISA-ADP"
            },
            "title": "CISA ADP Vulnrichment"
          }
        ],
        "cna": {
          "affected": [
            {
              "defaultStatus": "unaffected",
              "product": "cPanel",
              "vendor": "WebPros",
              "versions": [
                {
                  "lessThan": "11.136.0.9",
                  "status": "affected",
                  "version": "11.136.0.0",
                  "versionType": "semver"
                },
                {
                  "lessThan": "11.134.0.25",
                  "status": "affected",
                  "version": "11.134.0.0",
                  "versionType": "semver"
                },
                {
                  "lessThan": "11.132.0.31",
                  "status": "affected",
                  "version": "11.132.0.0",
                  "versionType": "semver"
                },
                {
                  "lessThan": "11.130.0.22",
                  "status": "affected",
                  "version": "11.130.0.0",
                  "versionType": "semver"
                },
                {
                  "lessThan": "11.126.0.58",
                  "status": "affected",
                  "version": "11.126.0.0",
                  "versionType": "semver"
                },
                {
                  "lessThan": "11.124.0.37",
                  "status": "affected",
                  "version": "11.124.0.0",
                  "versionType": "semver"
                },
                {
                  "lessThan": "11.118.0.66",
                  "status": "affected",
                  "version": "11.118.0.0",
                  "versionType": "semver"
                },
                {
                  "lessThan": "11.110.0.117",
                  "status": "affected",
                  "version": "11.110.0.0",
                  "versionType": "semver"
                },
                {
                  "lessThan": "11.102.0.41",
                  "status": "affected",
                  "version": "11.102.0.0",
                  "versionType": "semver"
                },
                {
                  "lessThan": "11.94.0.30",
                  "status": "affected",
                  "version": "11.94.0.0",
                  "versionType": "semver"
                },
                {
                  "lessThan": "11.86.0.43",
                  "status": "affected",
                  "version": "11.86.0.0",
                  "versionType": "semver"
                }
              ]
            },
            {
              "defaultStatus": "unaffected",
              "product": "cPanel (CloudLinux 6, CentOS 6)",
              "vendor": "WebPros",
              "versions": [
                {
                  "lessThan": "11.110.0.116",
                  "status": "affected",
                  "version": "11.110.0.0",
                  "versionType": "semver"
                }
              ]
            },
            {
              "defaultStatus": "unaffected",
              "product": "WP Squared",
              "vendor": "WebPros",
              "versions": [
                {
                  "lessThan": "11.136.1.10",
                  "status": "affected",
                  "version": "11.136.1.0",
                  "versionType": "semver"
                }
              ]
            }
          ],
          "descriptions": [
            {
              "lang": "en",
              "value": "A chmod call in the cPanel Nova plugin\u0027s Cpanel::Nova::Connector follows symlinks, allowing setting root permissions on arbitrary system files or directories. That can cause DoS or local privilege escalation when an authenticated cPanel user places a symlink at a user-controlled legacy Nova path under their home directory."
            }
          ],
          "metrics": [
            {
              "cvssV4_0": {
                "baseScore": 5.3,
                "baseSeverity": "MEDIUM",
                "vectorString": "CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:N/VI:L/VA:L/SC:N/SI:N/SA:N",
                "version": "4.0"
              }
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "cweId": "CWE-61",
                  "description": "CWE-61 UNIX Symbolic Link (Symlink) Following",
                  "lang": "en",
                  "type": "CWE"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2026-05-15T17:14:52.318Z",
            "orgId": "36234546-b8fa-4601-9d6f-f4e334aa8ea1",
            "shortName": "hackerone"
          },
          "references": [
            {
              "url": "https://support.cpanel.net/hc/en-us/articles/40311543760407-Security-CVE-2026-29203-cPanel-WHM-WP2-Security-Update-May-08-2026"
            }
          ]
        }
      },
      "cveMetadata": {
        "assignerOrgId": "36234546-b8fa-4601-9d6f-f4e334aa8ea1",
        "assignerShortName": "hackerone",
        "cveId": "CVE-2026-29203",
        "datePublished": "2026-05-08T18:51:05.541Z",
        "dateReserved": "2026-03-04T15:00:09.267Z",
        "dateUpdated": "2026-05-15T17:14:52.318Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.2"
    }

    CVE-2026-29200 (GCVE-0-2026-29200)

    Vulnerability from cvelistv5 – Published: 2026-05-04 05:42 – Updated: 2026-05-04 19:44
    VLAI
    Summary
    A critical IDOR vulnerability has been discovered in Comet Backup affecting all versions from 20.11.0 to 26.1.1 and 26.2.1. The vulnerability allows a tenant administrator to impersonate any end-user account of other tenants on the same server via a vulnerable API call.
    SSVC
    Exploitation: none Automatable: yes Technical Impact: total
    CISA Coordinator (v2.0.3)
    CWE
    • CWE-639 - Insecure Direct Object Reference (IDOR)
    Assigner
    Impacted products
    Vendor Product Version
    WebPros Comet Backup Affected: 20.11.0 , < 26.1.2 (semver)
    Affected: 26.2.0 , < 26.2.2 (semver)
    Create a notification for this product.
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "metrics": [
              {
                "other": {
                  "content": {
                    "id": "CVE-2026-29200",
                    "options": [
                      {
                        "Exploitation": "none"
                      },
                      {
                        "Automatable": "yes"
                      },
                      {
                        "Technical Impact": "total"
                      }
                    ],
                    "role": "CISA Coordinator",
                    "timestamp": "2026-05-04T19:44:00.939292Z",
                    "version": "2.0.3"
                  },
                  "type": "ssvc"
                }
              }
            ],
            "providerMetadata": {
              "dateUpdated": "2026-05-04T19:44:22.056Z",
              "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
              "shortName": "CISA-ADP"
            },
            "title": "CISA ADP Vulnrichment"
          }
        ],
        "cna": {
          "affected": [
            {
              "defaultStatus": "unaffected",
              "product": "Comet Backup",
              "vendor": "WebPros",
              "versions": [
                {
                  "lessThan": "26.1.2",
                  "status": "affected",
                  "version": "20.11.0",
                  "versionType": "semver"
                },
                {
                  "lessThan": "26.2.2",
                  "status": "affected",
                  "version": "26.2.0",
                  "versionType": "semver"
                }
              ]
            }
          ],
          "descriptions": [
            {
              "lang": "en",
              "value": "A critical IDOR vulnerability has been discovered in Comet Backup affecting all versions from 20.11.0 to 26.1.1 and 26.2.1. The vulnerability allows a tenant administrator to impersonate any end-user account of other tenants on the same server via a vulnerable API call."
            }
          ],
          "metrics": [
            {
              "cvssV4_0": {
                "baseScore": 9.9,
                "baseSeverity": "CRITICAL",
                "vectorString": "CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:N/SC:N/SI:N/SA:H",
                "version": "4.0"
              }
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "cweId": "CWE-639",
                  "description": "CWE-639 Insecure Direct Object Reference (IDOR)",
                  "lang": "en",
                  "type": "CWE"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2026-05-04T05:42:15.576Z",
            "orgId": "36234546-b8fa-4601-9d6f-f4e334aa8ea1",
            "shortName": "hackerone"
          },
          "references": [
            {
              "url": "https://support.cometbackup.com/hc/en-us/articles/40090945484823--CVE-2026-29200-%D0%A1ritical-IDOR-vulnerability-in-Comet-Backup"
            }
          ]
        }
      },
      "cveMetadata": {
        "assignerOrgId": "36234546-b8fa-4601-9d6f-f4e334aa8ea1",
        "assignerShortName": "hackerone",
        "cveId": "CVE-2026-29200",
        "datePublished": "2026-05-04T05:42:15.576Z",
        "dateReserved": "2026-03-04T15:00:09.266Z",
        "dateUpdated": "2026-05-04T19:44:22.056Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.2"
    }