CVE-2016-10843

cPanel before 11.54.0.4 allows code execution in the context of shared users via JSON-API (SEC-76).