CVE-2021-27231
Summary
Hestia Control Panel 1.3.5 and below, in a shared-hosting environment, sometimes allows remote authenticated users to create a subdomain for a different customer's domain name, leading to spoofing of services or email messages.
- LOW
- NETWORK
- LOW
- UNCHANGED
- NONE
- LOW
- LOW
- NONE
References
Advisory Timeline
- Published