Directory traversal vulnerability in frontend/x3/stats/lastvisit.html in cPanel allows remote attackers to read arbitrary files via a .. (dot dot) in the domain parameter.
https://exchange.xforce.ibmcloud.com/vulnerabilities/51426
http://www.securitytracker.com/id?1022490