The Host Access Control feature in cPanel before 60.0.25 mishandles actionless host.deny entries (SEC-187). Read more