Back to CVE List

CVE-2026-12195

Vulnerability Description

myVesta is affected by an authenticated remote code execution vulnerability. Low privileged users can insert arbitrary commands as a part of the v_ftp_user parameter when deleting FTP usernames. This could result in the execution of commands as the admin user or takevoer of the admin user in myVesta.

Vulnerability Details

Published Date
Last Modified
CWE ID
CWE-78
Source
NVD
Vendor
myvesta
Product
vesta

External References

Discussion (0)

Add Comment

No comments yet. Be the first!