DirectAdmin version 1.491 suffers from a cross site request forgery vulnerability.