CSRF in Vestacp Vesta_control_panel

CVE-2015-2861

Cross-site request forgery (CSRF) vulnerability in Vesta Control Panel before 0.9.8-14 allows remote attackers to hijack the authentication of arbitrary users.

Vulnerability class: CSRF (Cross-Site Request Forgery)

EPSS: 0.012 (64.7th percentile) — read the EPSS interpretation.

Affected products

Weakness classification (CWE)

References