The Cyclades APM contains a flaw that may allow a malicious user to gain access to unauthorized privileges. The issue is triggered when a user changes values in the profile editing URL to grant themselves administrative access. This flaw may lead to a loss of integrity and/or availability.
Upgrade to version 1.2.5 or higher, as it has been reported to fix this vulnerability. It is also possible to correct the flaw by implementing the following workaround(s): disable the APM web interface.