CVE-2021-27231

Published
View on NVD ↗
CVSS v3
5.4
MEDIUM
CVSS v2
5.5
MEDIUM
Affected
2
PROJECTS

Description

Hestia Control Panel 1.3.5 and below, in a shared-hosting environment, sometimes allows remote authenticated users to create a subdomain for a different customer's domain name, leading to spoofing of services or email messages.

hestiacp/hestiacp
hestiacp/hestiacp
Hestia Control Panel | A lightweight and powerful control panel for the modern web.
GitHubGitHub
4.38K
sickcodes/security
sickcodes/security
Collection of CVEs from Sick Codes, or collaborations on https://sick.codes security research & advisories.
GitHubGitHub
91