Uncategorized CVE-2018-20916 (cpanel) - August 1, 2019 - admin cPanel before 70.0.23 allows Stored XSS via a WHM Edit MX Entry (SEC-370). Source: NIST CVE-2018-20916 (cpanel)