Hestiacp is a control panel used to provide administrators with an easy-to-use Web and command-line interface that enables them to quickly deploy and manage Web domains, mail accounts, DNS zones, and databases from a central dashboard.Hestiacp contains a cross-site scripting vulnerability that could be exploited by an attacker to potentially steal a user’s cookie and gain unauthorized access to that user’s account via the stolen cookie to gain unauthorized access to that user’s account.