cPanel TSR-2017-0005 Full DisclosureSEC-276SummarySQL injection in eximstats processing.Security RatingcPanel has assigned this vulnerability a CVSSv3 score of 5.3 CVSS:3.0/AV:N/AC:H/PR:N/UI:R/S:U/C:N/I:H/A:NDescriptionWhen processing eximstats updates in buffered mode, errors in the SQL operations cause the updates to be reprocessed one statement at a time. The logic used to split multiple SQL ...
cPanel, Inc. has released updated RPMs for EasyApache 4 on September 6, 2017, with PHP versions 7.0.23 and 7.1.9 and RubyGems 2.6.13. This release addresses vulnerabilities related to CVE-2017-12932, CVE-2017-0902, CVE-2017-0899, CVE-2017-0900, and CVE-2017-0901. We strongly encourage all all PHP 7.0 users to upgrade to version 7.0.23, all PHP 7.1 users to upgrade to version 7.1.9, and all ...
In order to fix the recently issue on Outlook express outgoing problem, relates to the following change in cPanel version 66: Please follow being step to fix it. Fixed case CPANEL-11108: Remove Triple DES from default cipher suite. You can browse to "WHM >> Exim Configuration Manager >> Advanced Editor" and change the "tls_require_ciphers" value to the following value that was issued by ...