CVE-2021-3797
hestiacp is vulnerable to Use of Wrong Operator in String Comparison
9.8CVSS
9.4AI Score
0.003EPSS
CVE-2022-1509
Command Injection Vulnerability in GitHub repository hestiacp/hestiacp prior to 1.5.12. An authenticated remote attacker with low privileges can execute arbitrary code under root context.
9.9CVSS
9.1AI Score
0.002EPSS