CVE-2026-29205_CVE-2026-29205

8.6 / 10

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:L/A:L

Description

Incorrect privileges management and insufficient path filtering allow to read arbitrary file on the server via the cpdavd attachment download endpoints.

Basic Information

ID CVE-2026-29205

Source hackerone

Published May 13, 2026 at 22:06

Affected Product

Vendor WebPros

Product cPanel

Version 11.136.0.0

Affected Versions WebPros cPanel 11.136.0.0
WebPros cPanel 11.134.0.0
WebPros cPanel 11.132.0.0
WebPros cPanel 11.130.0.0
WebPros cPanel 11.126.0.0
WebPros cPanel 11.120.0.0
WebPros WP Squared 11.120.1.0

CWE Classification

CWE-250

AI Assessment

AI Score 8.6 / 10

AI Severity High

Vendor WebPros

Product cPanel

Version 11.136.0.0, 11.134.0.0, 11.132.0.0, 11.130.0.0, 11.126.0.0, 11.120.0.0

References

support.cpanel.net /hc/en-us/articles/40437020299927-Security-CVE-2026-29205-cPanel-WHM-WP2-Security-Update-May-13-2026

{
    "lastseen": "",
    "description": "Incorrect privileges management and insufficient path filtering allow to read arbitrary file on the server via the cpdavd attachment download endpoints.",
    "published": "2026-05-13T22:06:04.220Z",
    "modified": "2026-05-13T22:06:04.220Z",
    "type": "cve",
    "title": "CVE-2026-29205",
    "source": "hackerone",
    "references": "https://support.cpanel.net/hc/en-us/articles/40437020299927-Security-CVE-2026-29205-cPanel-WHM-WP2-Security-Update-May-13-2026",
    "id": "CVE-2026-29205",
    "bulletinFamily": "",
    "cwe": [
        "CWE-250"
    ],
    "cvelist": null,
    "sourceData": "WebPros cPanel 11.136.0.0\nWebPros cPanel 11.134.0.0\nWebPros cPanel 11.132.0.0\nWebPros cPanel 11.130.0.0\nWebPros cPanel 11.126.0.0\nWebPros cPanel 11.120.0.0\nWebPros WP Squared 11.120.1.0",
    "sourceHref": "",
    "cvss": {
        "score": 8.6,
        "severity": "HIGH",
        "vector": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:L/A:L",
        "version": "3.1"
    },
    "cvss2": [],
    "cvss3": {
        "version": "",
        "vectorString": "",
        "baseScore": 0,
        "baseSeverity": "",
        "attackVector": "",
        "attackComplexity": "",
        "privilegesRequired": "",
        "userInteraction": "",
        "scope": "",
        "confidentialityImpact": "",
        "integrityImpact": "",
        "availabilityImpact": "",
        "cvssV3": {
            "version": "",
            "vectorString": "",
            "baseScore": 0,
            "baseSeverity": "",
            "attackVector": "",
            "attackComplexity": "",
            "privilegesRequired": "",
            "userInteraction": "",
            "scope": "",
            "confidentialityImpact": "",
            "integrityImpact": "",
            "availabilityImpact": ""
        }
    },
    "href": "",
    "category_name": "CVE",
    "post_link": "",
    "product": "cPanel",
    "version": "11.136.0.0",
    "vendor": "WebPros",
    "ai_description": "Incorrect privileges management and insufficient path filtering allow to read arbitrary file on the server via the cpdavd attachment download endpoints.",
    "ai_severity": "High",
    "ai_vendor": "WebPros",
    "ai_product": "cPanel",
    "ai_version": "11.136.0.0, 11.134.0.0, 11.132.0.0, 11.130.0.0, 11.126.0.0, 11.120.0.0",
    "ai_score": 8.6
}