Cross-site scripting (XSS) vulnerability in the Site Editor (aka SiteBuilder) feature in Parallels Plesk Panel 10.4.4_build20111103.18 allows remote attackers to inject arbitrary web script or HTML via the login parameter to preferences.html.
CPE | Name | Operator | Version |
---|---|---|---|
parallels_plesk_panel | eq | 10.4.4-build20111103.18 |