Installatron Plugin for DirectAdmin contains a flaw as the program creates temporary files insecurely. It is possible for a local attacker to use a symlink attack against an unspecified file to cause the program to unexpectedly overwrite an arbitrary file.
Local Access Required
Loss of Integrity
It has been reported that this issue has been fixed. Upgrade to version 9.0.6, or higher, to address this vulnerability.