Vesta Control Panel Elevation of Privilege Vulnerability

Vesta Control Panel VestaCP is an open source web hosting control panel. A security vulnerability exists in Vesta Control Panel 0.9.8-26 and earlier versions. The vulnerability can be exploited by an attacker to gain root privileges on the system with the help of v-change-user-password user...

CVE-2020-10787

An elevation of privilege in Vesta Control Panel through 0.9.8-26 allows an attacker to gain root system access from the admin account via v-change-user-password aka the user password change script...