CVE-2020-36948

CRITICAL

VestaCP 0.9.8-26 - Auth Bypass

Title source: llm

Description

VestaCP 0.9.8-26 contains a session token vulnerability in the LoginAs module that allows remote attackers to manipulate authentication tokens. Attackers can exploit insufficient token validation to access user accounts and perform unauthorized login requests without proper administrative permissions.

Exploits (1)

exploitdb WORKING POC

by Vulnerability-Lab · textwebappsmultiple

https://www.exploit-db.com/exploits/49219

View Code ZIP pw:eip

References (5)

[Various Sources] https://vestacp.com/

[Various Sources] https://www.vulnerability-lab.com/get_content.php?id=2240

[Various Sources] https://www.vulnerability-lab.com/show.php?user=Benjamin%20K.M.

[Third Party Advisory] https://www.vulncheck.com/advisories/vestacp-loginas-insufficient-session-validation

[Exploit, Third Party Advisory] https://www.exploit-db.com/exploits/49219

Scores

CVSS v3 9.8

EPSS 0.0032

EPSS Percentile 54.9%

Attack Vector NETWORK

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

CISA SSVC

Vulnrichment

Exploitation poc

Automatable no

Technical Impact total

Details

CWE

CWE-863

Status published

Products (1)

VestaCP/VestaCP 0.9.8-26

Published Jan 27, 2026

Tracked Since Feb 18, 2026