CVE-2022-45130
CVE-2022-45130 describes a CSRF vulnerability in Plesk Obsidian that can enable an attacker to change the administrator password via the REST API endpoint /api/v2/cli/commands. The issue affects Plesk Obsidian (Obsidian naming convention for versions) and is triggered when an authenticated user i...