In cPanel before 66.0.2, Apache HTTP Server SSL domain logs can persist on disk after an account termination (SEC-291).
Affected Software
| Name | Vendor | Start Version | End Version |
|---|---|---|---|
| Cpanel | Cpanel | 55.9999.61 (including) | 56.0.51 (excluding) |
| Cpanel | Cpanel | 57.9999.48 (including) | 58.0.52 (excluding) |
| Cpanel | Cpanel | 59.9999.58 (including) | 60.0.45 (excluding) |
| Cpanel | Cpanel | 61.9999.55 (including) | 62.0.27 (excluding) |
| Cpanel | Cpanel | 63.9999.74 (including) | 64.0.33 (excluding) |
| Cpanel | Cpanel | 65.9999.38 (including) | 66.0.2 (excluding) |