Lucene search

K
cve[email protected]CVE-2011-4726
HistoryDec 16, 2011 - 11:55 a.m.

CVE-2011-4726

2011-12-1611:55:06
CWE-79
web.nvd.nist.gov
20
cve-2011-4726
xss
parallels plesk panel
security vulnerability
remote attack

4.3 Medium

CVSS2

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:M/Au:N/C:N/I:P/A:N

5.9 Medium

AI Score

Confidence

High

0.001 Low

EPSS

Percentile

48.5%

Multiple cross-site scripting (XSS) vulnerabilities in the Server Administration Panel in Parallels Plesk Panel 10.2.0_build1011110331.18 allow remote attackers to inject arbitrary web script or HTML via crafted input to a PHP script, as demonstrated by admin/health/ and certain other files.

Affected configurations

NVD
Node
parallelsparallels_plesk_panelMatch10.2.0_build1011110331.18
AND
microsoftwindows
OR
redhatenterprise_linuxMatch6.0

4.3 Medium

CVSS2

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:M/Au:N/C:N/I:P/A:N

5.9 Medium

AI Score

Confidence

High

0.001 Low

EPSS

Percentile

48.5%

Related for CVE-2011-4726