A vulnerability, which was classified as problematic , has been found in HestiaCP up to 1.9.4 . This issue affects some unknown processing. This manipulation causes use of less trusted source. This vulnerability is tracked as CVE-2026-43634 . The attack is possible to be carried out remotely. No exploit exists. It is recommended to apply a patch to fix this issue.