An issue in DirectAdmin v1.680 allows unauthorized attackers to manipulate the page layout and replace the legitimate login interface with arbitrary attacker-controlled content via supplying a crafted GET request.
Metrics
Affected Vendors & Products
Fixes
Solution
No solution given by the vendor.
Workaround
No workaround given by the vendor.
References
History
Fri, 03 Oct 2025 19:15:00 +0000
Type | Values Removed | Values Added |
---|---|---|
Weaknesses | CWE-598 | |
Metrics |
cvssV3_1
|
Fri, 03 Oct 2025 17:15:00 +0000
Type | Values Removed | Values Added |
---|---|---|
Description | An issue in DirectAdmin v1.680 allows unauthorized attackers to manipulate the page layout and replace the legitimate login interface with arbitrary attacker-controlled content via supplying a crafted GET request. | |
References |
|

Status: PUBLISHED
Assigner: mitre
Published:
Updated: 2025-10-03T19:04:21.186Z
Reserved: 2025-08-17T00:00:00.000Z
Link: CVE-2025-56551

Updated: 2025-10-03T19:04:15.280Z

Status : Received
Published: 2025-10-03T17:15:47.550
Modified: 2025-10-03T19:15:49.920
Link: CVE-2025-56551

No data.

No data.