Knowledgebase

  1. Cheap cPanel license , CloudLinux license , LiteSpeed license, Imunify360 license , etc
  2. Knowledgebase
  3. cPanel/WHM Troubleshoots
  4. Security

  Categories

1
All In One Licenses Instructions
283
cPanel/WHM Troubleshoots
 2
KNOWN ISSUES
 3
Legal

  Categories

  Tag Cloud

cPanel /scripts/ - Powerful commands from cPanel Server is inaccessible once rebooted after installing the cPanel

  Support

  My Support Tickets   News   Knowledgebase   Downloads   Network Status   Open Ticket

Articles

AWStats vulnerability PTT-2025-021 Problem A recently discovered vulnerability in AWStats allows users who can modify the... AutoSSL fails with PKCS#1 1.5 is disabled as it is known to be vulnerable to marvin attacks Symptoms AutoSSL may fail to validate a domain to issue a new SSL certificate with the following... ClamAV cannot be installed on an Ubuntu 24 server Symptoms ClamAV cannot be installed on an Ubuntu 24 server.   Description The following... Does cPanel have any plans regarding the closure announcement of ConfigServer Services? Please note, Way to the Web Ltd. (the company behind ConfigServer) has announced it will... Error issuing hostname certificate: 403 urn:ietf:params:acme:error:unauthorized (The client lacks sufficient authorization) Symptoms When attempting to get a hostname certificate, you receive an error similar to the... Error when using API function: “500 Security Policy requires exec termination.” Symptoms When attempting to use an API function via API Token, we are seeing the following... Hostname history can prevent the current hostname's SSL certificate from being obtained when the previously used hostname's domain is rate-limited. Symptoms When attempting to issue and install a new hostname SSL certificate we see our... How to deny access to WHM via Host Access Control on a RHEL-based server Introduction This guide provides a basic example for blocking access to WHM for all IP... How to disable the ConfigServer Exploit Scanner (CXS) ModSecurity rules Introduction CXS restricts where files are uploaded, which prevents you from defining a... How to stop ImunifyAV Introduction This article provides the procedure to stop ImunifyAV.   Procedure... Imunify360's Exim+Dovecot brute-force attack protection module erroring due to latest dovecot updates Symptoms While there are no services failing, this is likely to cause Exim+Dovecot... Local Privilege Escalation Vulnerability using the Team Manager API CVE-2025-66429 Symptoms In cPanel v110 or later, it was found that a Team Manager API could allow a local user... Multiple SSLs can be installed on service subdomain when added as an addon domain Symptoms The SSL for a service subdomain has been renewed, but an expired SSL is still... Rules are added to cpanel-dovecot-solr firewall chain each time service is restarted Symptoms When the cpanel_dovecot_solr service is restarted, additional rules are added to... SSL expiry notifications are sent before renewal is attempted Symptoms Since switching from Sectigo to LetsEncrypt automatically, some SSLs trigger a... SSLv3 is still a selectable option for SSL Minimum Protocol setting on v132. Symptoms When setting the "SSL Minimum Protocol" setting in WHM's Mailserver Configuration... Security Advisor reports MySQL is configured to listen on all interfaces when using Imunify360 to close all ports except specified Symptoms When setting Imunify360 Default Blocking Mode to "All closed, except specified"... Service subdomains can still be accessed when port is blocked Symptoms When a cPanel port such as 2083, 2087, or 2096 is blocked by the firewall, the... Team member password change by email blocked by cPanel password change feature being disabled Symptoms cPanel team member/user password set/reset by email fails with an error.... Two-factor Authentication (2FA) is reported as removed when using Team User. Symptoms We received a notification reporting that Two-factor Authentication (2FA) for a... Unable to export private GnuPG secret key when using non-default server locale. Symptoms We are unable to export the GnuPG private key via cPanel’s Encryption module with... WP2: Enabling "Limit logins to verified IP addresses" option results in "Two-Factor Authentication" prompt. Symptoms After enabling WP2's "Configure Security Policies" option "Limit logins to... Webmail does not login to inbox after enabling two-factor authentication Symptoms When the option "Open my inbox when I log in" is configured, RoundCube does not... What are the minimum SSL protocol versions that Dovecot 2.4 accepts? Question What are the minimum SSL protocol versions that Dovecot 2.4 accepts? Answer... Which ports should I open on a DNSOnly server? Question Which ports should I open on a DNSOnly server?   Answer We recommend opening... Why is my cPanel AutoSSL (Powered by Sectigo) request failing for some domains? Question Why is my cPanel AutoSSL (Powered by Sectigo) request failing with this notice when... cPHulk chain is not added to INPUT filter in nftables, resulting in the cPHulk Firewall chain not blocking any IPs Symptoms IPs that are reportedly blocked by cPHulk in the server's firewall are not being... cpanel-p0f package is marked as malicious by some Antivirus Vendors Symptoms When performing a security scan of your server, some antivirus applications may... cpsrvd Returns 200 Response Code on all URLs Symptoms Any request made to ports 2083 or 2087 will return with a successful 200 response,... Mailman 2.1.39 - CVE-2025-43919, CVE-2025-43920, CVE-2025-43921 Question Information on 3 Mailman vulnerabilities was recently released. Is the cPanel...
Back

  Tag Cloud

cPanel /scripts/ - Powerful commands from cPanel Server is inaccessible once rebooted after installing the cPanel

  Support

  My Support Tickets   News   Knowledgebase   Downloads   Network Status   Open Ticket