VYPR

DirectAdmin

by InfinitumIT

CVEs (1)

  • CVE-2019-11193MedApr 30, 2019
    risk 0.43cvss 6.1epss 0.02

    The FileManager in InfinitumIT DirectAdmin through v1.561 has XSS via CMD_FILE_MANAGER, CMD_SHOW_USER, and CMD_SHOW_RESELLER; an attacker can bypass the CSRF protection with this, and take over the administration panel.