Lucene search
K

6 matches found

RedhatCVE
RedhatCVE
added 2025/05/22 4:55 a.m.14 views

CVE-2013-4878

The default configuration of Parallels Plesk Panel 9.0.x and 9.2.x on UNIX, and Small Business Panel 10.x on UNIX, has an improper ScriptAlias directive for phppath, which makes it easier for remote attackers to execute arbitrary code via a crafted request, a different vulnerability than...

9.8CVSS8.4AI score0.99998EPSS
Exploits42References1
NVD
NVD
added 2013/07/18 4:51 p.m.38 views

CVE-2013-4878

The default configuration of Parallels Plesk Panel 9.0.x and 9.2.x on UNIX, and Small Business Panel 10.x on UNIX, has an improper ScriptAlias directive for phppath, which makes it easier for remote attackers to execute arbitrary code via a crafted request, a different vulnerability than...

7.5CVSS9.7AI score0.31072EPSS
Exploits0References3
CVE
CVE
added 2013/07/18 4:0 p.m.233 views

CVE-2013-4878

CVE-2013-4878 affects Parallels Plesk Panel 9.0.x–9.2.x on UNIX and Small Business Panel 10.x on UNIX, due to an improper ScriptAlias directive for phppath that enables remote code execution via crafted requests. Affected versions expose code execution under the web server user; exploitation reli...

7.5CVSS9.7AI score0.31072EPSS
In wildExploits0References3Affected Software2
Cvelist
Cvelist
added 2013/07/18 4:0 p.m.35 views

CVE-2013-4878

The default configuration of Parallels Plesk Panel 9.0.x and 9.2.x on UNIX, and Small Business Panel 10.x on UNIX, has an improper ScriptAlias directive for phppath, which makes it easier for remote attackers to execute arbitrary code via a crafted request, a different vulnerability than...

9.8AI score0.31072EPSS
Exploits0References3
ATTACKERKB
ATTACKERKB
added 2013/07/18 12:0 a.m.181 views

CVE-2013-4878

The default configuration of Parallels Plesk Panel 9.0.x and 9.2.x on UNIX, and Small Business Panel 10.x on UNIX, has an improper ScriptAlias directive for phppath, which makes it easier for remote attackers to execute arbitrary code via a crafted request, a different vulnerability than...

9.8CVSS5.6AI score0.99998EPSS
In wildExploits42References5
Check Point Advisories
Check Point Advisories
added 2012/05/14 12:0 a.m.21 views

PHP php-cgi Query String Parameter Code Execution (CVE-2012-1823; CVE-2012-2311; CVE-2012-2335; CVE-2012-2336; CVE-2013-4878)

A remote code execution vulnerability has been reported in PHP. The vulnerability is due to the improper parsing and filtering of query strings by PHP. A remote attacker may exploit this issue by sending crafted HTTP requests. Successful exploitation would allow an attacker to execute arbitrary...

7.5CVSS9.9AI score0.99998EPSS
Exploits42
Rows per page
Query Builder