CNNVD-202601-4550 Information

CNNVD ID

CNNVD-202601-4550

Related CVE

CVE-2020-36948

• CNNVD Published: 2026-01-27

Description (Chinese)

Vesta Control Panel（VestaCP）是Vesta Control Panel公司的一个开源的虚拟主机控制面板。 Vesta Control Panel（VestaCP） 0.9.8-26版本存在安全漏洞，该漏洞源于令牌验证不足，可能导致未授权访问用户账户。

Description (English)

Vesta Control Panel (VestaCP) is an open-source virtual mainframe control panel for Vesta Control Panel. Vesta Control Panel (VestaCP) version 0.9.8-26 contains a security loophole, which arises from inadequate token validation and may lead to unauthorized access to user accounts.

Hazard Level

Low

Vulnerability Type

其他

Affected Vendor

Vesta Control Panel

Published

2026-01-27

Last Modified

2026-02-24

References

https://vestacp.com/ https://www.exploit-db.com/exploits/49219 https://www.vulncheck.com/advisories/vestacp-loginas-insufficient-session-validation https://www.vulnerability-lab.com/get_content.php?id=2240 https://www.vulnerability-lab.com/show.php?user=Benjamin%20K.M.