Cpanel versions 11.x and below suffer from a local file inclusion vulnerability that allows for system compromise.
a346cfea7b8c77e8707b4cabc15b3d531da2d6c2de2c48fece10ae7d469d9fd5
Cpanel version 11.x suffers from local file inclusion and cross site scripting vulnerabilities.
fc9c75fcc3826c552deabea223778dc3317c6103193863734ee77b6b2de9a031