CVE-2019-12791

by Jeremyin Security Bulletinson Posted on

A directory traversal vulnerability in the v-list-user script in Vesta Control Panel 0.9.8-24 allows remote attackers to escalate from regular registered users to root via the password reset form.