CVE-2025-43920 – cPanel WHM Shell Command Injection Vulnerability

April 20, 2025

CVE ID : CVE-2025-43920

Published : April 20, 2025, 1:15 a.m. | 21 hours ago

Description : GNU Mailman 2.1.39, as bundled in cPanel (and WHM), allows unauthenticated attackers to execute arbitrary OS commands via shell metacharacters in an email Subject line.

Severity: 5.4 | MEDIUM

Visit the link for more details, such as CVSS details, affected products, timeline, and more…

Source: Read More

Previous ArticleCVE-2025-43921 – cPanel WHM GNU Mailman Unauthenticated List Creation Vulnerability

Next Article CVE-2025-43919 – cPanel WHM GNU Mailman File Traversal Vulnerability

The Case For Minimal WordPress Setups: A Contrarian View On Theme Frameworks

How To Fix Largest Contentful Paint Issues With Subpart Analysis

How To Prevent WordPress SQL Injection Attacks

In MCP era API discoverability is now more important than ever

Black Myth: Wukong is coming to Xbox exactly one year after launching on PlayStation

Reddit wants to sue Anthropic for stealing its data, but the Claude AI manufacturers vow to “defend ourselves vigorously”

Satya Nadella says Microsoft makes money every time you use ChatGPT: “Every day that ChatGPT succeeds is a fantastic day”

Multiple reports suggest a Persona 4 Remake from Atlus will be announced during the Xbox Games Showcase

TC39 advances numerous proposals at latest meeting

TC39 advances numerous proposals at latest meeting

TypeBridge – zero ceremony, compile time rpc for client and server com

Simplify Cloud-Native Development with Quarkus Extensions

Black Myth: Wukong is coming to Xbox exactly one year after launching on PlayStation

Black Myth: Wukong is coming to Xbox exactly one year after launching on PlayStation

Reddit wants to sue Anthropic for stealing its data, but the Claude AI manufacturers vow to “defend ourselves vigorously”

Satya Nadella says Microsoft makes money every time you use ChatGPT: “Every day that ChatGPT succeeds is a fantastic day”

CVE-2025-43920 – cPanel WHM Shell Command Injection Vulnerability

Leadership, Trust, and Cyber Hygiene: NCSC’s Guide to Security Culture in Action

Critical Fortinet flaws now exploited in Qilin ransomware attacks

Digital address verification

UBC Researchers Introduce â€˜First Exploreâ€™: A Two-Policy Learning Approach to Rescue Meta-Reinforcement Learning RL from Failed Explorations

The AI for Science Forum: A new era of discovery

Test Automation Maintenance Costs: Smart Ways to Reduce

The best vacuum and mop combination I’ve tested is from a company you’ve never heard of

Bethesda lead Todd Howard suggests the rumored ‘Fallout’ and ‘Elder Scrolls’ remasters aren’t happening right now

Top 7 High-Paying Affiliate Programs for Developers and Content Creators

I built a URL Shortener built for humans with Deno and Fresh

CVE-2025-43920 – cPanel WHM Shell Command Injection Vulnerability

Related Posts