A remote command execution in Vesta Control Panel through 0.9.8-26 allows any authenticated user to execute arbitrary commands on the system via cron jobs.
References
Link | Resource |
---|---|
https://gitlab.com/snippets/1954764 | Patch Third Party Advisory |
Configurations
History
No history.
Information
Published : 2020-04-21 17:15
Updated : 2024-02-04 21:00
NVD link : CVE-2020-10786
Mitre link : CVE-2020-10786
CVE.ORG link : CVE-2020-10786
JSON object : View
Products Affected
vestacp
- vesta_control_panel
CWE
CWE-863
Incorrect Authorization