CSRF Vulnerability in CyberPanel Allows Unauthorized Modification of Administrator Credentials

CSRF Vulnerability in CyberPanel Allows Unauthorized Modification of Administrator Credentials

CVE-2019-13056 · MEDIUM Severity

AV:N/AC:M/AU:N/C:P/I:P/A:P

An issue was discovered in CyberPanel through 1.8.4. On the user edit page, an attacker can edit the administrator's e-mail and password because of the lack of CSRF protection.

Learn more about our User Device Pen Test.