{"resultsPerPage":1,"startIndex":0,"totalResults":1,"format":"NVD_CVE","version":"2.0","timestamp":"2026-05-04T01:24:21.580","vulnerabilities":[{"cve":{"id":"CVE-2005-2021","sourceIdentifier":"cve@mitre.org","published":"2005-06-20T04:00:00.000","lastModified":"2026-04-16T00:27:16.627","vulnStatus":"Modified","cveTags":[],"descriptions":[{"lang":"en","value":"Cross-site scripting (XSS) vulnerability in cPanel 9.1 and earlier allows remote attackers to inject arbitrary web script or HTML via the user parameter in the login page."}],"metrics":{"cvssMetricV2":[{"source":"nvd@nist.gov","type":"Primary","cvssData":{"version":"2.0","vectorString":"AV:N/AC:M/Au:N/C:N/I:P/A:N","baseScore":4.3,"accessVector":"NETWORK","accessComplexity":"MEDIUM","authentication":"NONE","confidentialityImpact":"NONE","integrityImpact":"PARTIAL","availabilityImpact":"NONE"},"baseSeverity":"MEDIUM","exploitabilityScore":8.6,"impactScore":2.9,"acInsufInfo":false,"obtainAllPrivilege":false,"obtainUserPrivilege":false,"obtainOtherPrivilege":false,"userInteractionRequired":false}]},"weaknesses":[{"source":"nvd@nist.gov","type":"Primary","description":[{"lang":"en","value":"NVD-CWE-Other"}]}],"configurations":[{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:cpanel:cpanel:5.0:*:*:*:*:*:*:*","matchCriteriaId":"E5B33AE8-75A8-4454-A1A3-33F4034015FC"},{"vulnerable":true,"criteria":"cpe:2.3:a:cpanel:cpanel:5.3:*:*:*:*:*:*:*","matchCriteriaId":"E4394768-37BE-4FC5-A65A-28C0295A33B6"},{"vulnerable":true,"criteria":"cpe:2.3:a:cpanel:cpanel:6.0:*:*:*:*:*:*:*","matchCriteriaId":"DC52A018-43E8-4D86-A84C-81064B6ACD74"},{"vulnerable":true,"criteria":"cpe:2.3:a:cpanel:cpanel:6.2:*:*:*:*:*:*:*","matchCriteriaId":"2FC66D8D-01B8-4312-A311-ACAB43699071"},{"vulnerable":true,"criteria":"cpe:2.3:a:cpanel:cpanel:6.4:*:*:*:*:*:*:*","matchCriteriaId":"E892FB52-DB84-422F-ABB6-29AB95726138"},{"vulnerable":true,"criteria":"cpe:2.3:a:cpanel:cpanel:6.4.1:*:*:*:*:*:*:*","matchCriteriaId":"1FC5C591-69F3-411F-A53A-72D17687CA2E"},{"vulnerable":true,"criteria":"cpe:2.3:a:cpanel:cpanel:6.4.2:*:*:*:*:*:*:*","matchCriteriaId":"92D81000-1A7C-4465-9EE2-E651AED09F82"},{"vulnerable":true,"criteria":"cpe:2.3:a:cpanel:cpanel:6.4.2_stable_48:*:*:*:*:*:*:*","matchCriteriaId":"E4B555B5-E66F-4E37-A5BC-E04CBDFA4F8B"},{"vulnerable":true,"criteria":"cpe:2.3:a:cpanel:cpanel:7.0:*:*:*:*:*:*:*","matchCriteriaId":"09258895-32E6-49AC-8C96-D2838A0C8E6F"},{"vulnerable":true,"criteria":"cpe:2.3:a:cpanel:cpanel:8.0:*:*:*:*:*:*:*","matchCriteriaId":"3B4F9F98-08A2-430B-BC96-B30DCA165F07"},{"vulnerable":true,"criteria":"cpe:2.3:a:cpanel:cpanel:9.0:*:*:*:*:*:*:*","matchCriteriaId":"32D546C9-674B-4683-9EC5-18156CE04B63"},{"vulnerable":true,"criteria":"cpe:2.3:a:cpanel:cpanel:9.1:*:*:*:*:*:*:*","matchCriteriaId":"1E915DEA-1BA9-429D-97D5-CA3D37C969B5"}]}]}],"references":[{"url":"http://www.securityfocus.com/bid/13996","source":"cve@mitre.org","tags":["Exploit","Vendor Advisory"]},{"url":"http://www.securityfocus.com/bid/13996","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Exploit","Vendor Advisory"]}]}}]}