Home

Description

Incorrect privileges management and insufficient path filtering allow to read arbitrary file on the server via the cpdavd attachment download endpoints.

PUBLISHED Reserved 2026-03-04 | Published 2026-05-13 | Updated 2026-05-14 | Assigner hackerone




HIGH: 8.6CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:L/A:L

Problem types

CWE-250 Execution with Unnecessary Privileges

Product status

Default status
unaffected

11.136.0.0 (semver) before 11.136.0.10
affected

11.134.0.0 (semver) before 11.134.0.26
affected

11.132.0.0 (semver) before 11.132.0.32
affected

11.130.0.0 (semver) before 11.130.0.23
affected

11.126.0.0 (semver) before 11.126.0.59
affected

11.120.0.0 (semver) before 11.124.0.38
affected

Default status
unaffected

11.120.1.0 (semver) before 11.136.1.12
affected

References

support.cpanel.net/...el-WHM-WP2-Security-Update-May-13-2026

cve.org (CVE-2026-29205)

nvd.nist.gov (CVE-2026-29205)

Download JSON