CVEs-PoC/2021/CVE-2021-28379.md at e6ecd99f3d241ced14da2cc5fcb4da3fd3429d9d

CalvinBackup/CVEs-PoC

Fork 0

mirror of https://github.com/0xMarcio/cve.git synced 2026-05-25 00:14:09 +02:00

Files

T

marc 555e9c7de4 Update Sat May 25 21:48:12 CEST 2024

2024-05-25 21:48:12 +02:00

672 B

Raw Blame History

CVE-2021-28379

Description

web/upload/UploadHandler.php in Vesta Control Panel (aka VestaCP) through 0.9.8-27 and myVesta through 0.9.8-26-39 allows uploads from a different origin.

POC

Reference

http://packetstormsecurity.com/files/161836/VestaCP-0.9.8-Cross-Site-Request-Forgery.html

Github

https://github.com/ARPSyndicate/cvemon

672 B Raw Blame History

CVE-2021-28379

Description

POC

Reference

Github

672 B

Raw Blame History