Produkt Control panel (...) - CVEMAP.ORG

Podatności dla 'Control panel'

2022-04-28

CVE-2022-1509

CWE-74

Sed Injection Vulnerability in GitHub repository hestiacp/hestiacp prior to 1.5.12. An authenticated remote attacker with low privileges can execute arbitrary code under root context.

2022-03-16

CVE-2022-0986

CWE-79

Reflected Cross-site Scripting (XSS) Vulnerability in GitHub repository hestiacp/hestiacp prior to 1.5.11.

2022-03-04

CVE-2022-0752

CWE-79

Cross-site Scripting (XSS) - Generic in GitHub repository hestiacp/hestiacp prior to 1.5.9.

CVE-2022-0838

CWE-79

Cross-site Scripting (XSS) - Reflected in GitHub repository hestiacp/hestiacp prior to 1.5.10.

2022-03-03

CVE-2022-0753

CWE-79

Cross-site Scripting (XSS) - Reflected in GitHub repository hestiacp/hestiacp prior to 1.5.9.

2020-03-25

CVE-2020-10966

CWE-200

In the Password Reset Module in VESTA Control Panel through 0.9.8-25 and Hestia Control Panel before 1.1.1, Host header manipulation leads to account takeover because the victim receives a reset URL containing an attacker-controlled server name.

>>> Vendor: Hestiacp 2 Produkty

Control panel

Copyright 2024, cxsecurity.com