4 matches found
CVE-2022-2636
Improper Control of Generation of Code 'Code Injection' in GitHub repository hestiacp/hestiacp prior to 1.6.6...
CVE-2022-2636 Code Injection in hestiacp/hestiacp
Improper Control of Generation of Code 'Code Injection' in GitHub repository hestiacp/hestiacp prior to 1.6.6...
CVE-2022-2636 Code Injection in hestiacp/hestiacp
Improper Control of Generation of Code 'Code Injection' in GitHub repository hestiacp/hestiacp prior to 1.6.6...
CVE-2022-2636
CVE-2022-2636 affects hestiacp/hestiacp before 1.6.6. The vulnerability arises from improper validation in the code that handles generation of redirects, enabling crafted inputs to inject or modify code executed by the web server. Public details include a PoC showing a payload placed in the redir...