2 matches found
CVE-2022-1509
Command Injection Vulnerability in GitHub repository hestiacp/hestiacp prior to 1.5.12. An authenticated remote attacker with low privileges can execute arbitrary code under root context...
CVE-2022-1509
CVE-2022-1509 is a command injection vulnerability in hestiacp/hestiacp prior to 1.5.12. Connected docs describe authenticated, low-privilege remote exploit paths that leverage Sed injection via several v-change-* scripts (ns, theme, config-value, etc.) to execute arbitrary code with root privile...