Public CVE-2019-17128 disclosure

cPanel before 82.0.15 allows API token credentials to persist after an account has been renamed or terminated (SEC-517).