2 matches found
CVE-2026-43633
creationtimestamp| type| source ---|---|--- 2026-06-22 00:36:29+00:00| seen| https://bsky.app/profile/securitycyberuk.bsky.social/post/3motneopfss2b...
CVE-2026-43633
CVE-2026-43633 affects HestiaCP versions 1.9.0–1.9.4, where a deserialization vulnerability in the web terminal component is caused by a session format mismatch between PHP and Node.js. Unauthenticated remote attackers can trigger root‑level code execution by injecting crafted data into HTTP head...