Lucene search
K

5 matches found

NVD
NVD
added 2026/01/21 6:16 p.m.18 views

CVE-2021-47873

VestaCP versions prior to 0.9.8-25 contain a cross-site scripting vulnerability in the IP interface configuration that allows attackers to inject malicious scripts. Attackers can exploit the 'vinterface' parameter by sending a crafted POST request to the add/ip/ endpoint with a stored XSS payload...

7.2CVSS0.00193EPSS
Exploits0References4
ATTACKERKB
ATTACKERKB
added 2026/01/21 5:27 p.m.2 views

CVE-2021-47873

VestaCP versions prior to 0.9.8-25 contain a cross-site scripting vulnerability in the IP interface configuration that allows attackers to inject malicious scripts. Attackers can exploit the 'vinterface' parameter by sending a crafted POST request to the add/ip/ endpoint with a stored XSS payload...

7.2CVSS5AI score0.00193EPSS
Exploits0References4Affected Software1
EUVD
EUVD
added 2026/01/21 5:27 p.m.6 views

EUVD-2026-3630

VestaCP versions prior to 0.9.8-25 contain a cross-site scripting vulnerability in the IP interface configuration that allows attackers to inject malicious scripts. Attackers can exploit the 'vinterface' parameter by sending a crafted POST request to the add/ip/ endpoint with a stored XSS payload...

7.2CVSS5AI score0.00193EPSS
Exploits0References5
CVE
CVE
added 2026/01/21 5:27 p.m.14 views

CVE-2021-47873

VestaCP is affected in versions prior to 0.9.8-25 by a stored XSS in the IP interface configuration. The vulnerability hinges on the v_interface parameter and can be exploited by sending a crafted POST to the add/ip/ endpoint to inject scripts. This is a cross-site scripting issue with potential ...

7.2CVSS5AI score0.00193EPSS
Exploits0References4
Cvelist
Cvelist
added 2026/01/21 5:27 p.m.19 views

CVE-2021-47873 VestaCP < 0.9.8-25 - Stored Cross-Site Scripting

VestaCP versions prior to 0.9.8-25 contain a cross-site scripting vulnerability in the IP interface configuration that allows attackers to inject malicious scripts. Attackers can exploit the 'vinterface' parameter by sending a crafted POST request to the add/ip/ endpoint with a stored XSS payload...

7.2CVSS0.00193EPSS
Exploits0References4
Rows per page
Query Builder