October 31, 2020
CVE-2020-26886: Local Privilege Escalation using softaculous/bin/soft
This article describes CVE-2020-26886, a local privilege escalation affecting Softaculous < 5.5.7, along with generic tips when facing spooky setuid PHP interpreters. This software is widely deployed with most panels (eg. cPanel, Plesk, DirectAdmin).
Read more