CVE-2019-12791

Publication date

2019-08-15 20:34:18

Family

mitre

State

PUBLISHED

Description

A directory traversal vulnerability in the v-list-user script in Vesta Control Panel 0.9.8-24 allows remote attackers to escalate from regular registered users to root via the password reset form.