618 matches found
CVE-2025-65518
Plesk Obsidian versions 8.0.1 through 18.0.73 are vulnerable to a Denial of Service DoS condition. The vulnerability exists in the getpassword.php endpoint, where a crafted request containing a malicious payload can cause the affected web interface to continuously reload, rendering the service...
CVE-2025-65518
Plesk Obsidian versions 8.0.1 through 18.0.73 are vulnerable to a Denial of Service DoS condition. The vulnerability exists in the getpassword.php endpoint, where a crafted request containing a malicious payload can cause the affected web interface to continuously reload, rendering the service...
CVE-2025-65518
Plesk Obsidian (versions 8.0.1 to 18.0.73) is affected by a Denial of Service in the get_password.php endpoint. A crafted, malicious request can cause the web interface to continuously reload, rendering the service unavailable to legitimate users. Exploitation is remote and does not require authe...
CVE-2025-65518
Plesk Obsidian versions 8.0.1 through 18.0.73 are vulnerable to a Denial of Service DoS condition. The vulnerability exists in the getpassword.php endpoint, where a crafted request containing a malicious payload can cause the affected web interface to continuously reload, rendering the service...
Plesk Obsidian 安全漏洞
Plesk Obsidian is a hosting control panel from the Swiss company Plesk. A security vulnerability exists in Plesk Obsidian versions 8.0.1 through 18.0.73, which stems from improper handling of malicious loads in the file getpassword.php, which could lead to a denial of service attack...
PT-2026-1848
Name of the Vulnerable Software and Affected Versions Plesk Obsidian versions 8.0.1 through 18.0.73 Description Plesk Obsidian versions 8.0.1 through 18.0.73 are susceptible to a Denial of Service DoS condition. The issue resides in the get password.php API endpoint, where a specifically crafted...
CVE-2025-65518
Plesk Obsidian versions 8.0.1 through 18.0.73 are vulnerable to a Denial of Service DoS condition. The vulnerability exists in the getpassword.php endpoint, where a crafted request containing a malicious payload can cause the affected web interface to continuously reload, rendering the service...
CVE-2025-66430
Plesk 18.0 has Incorrect Access Control...
EUVD-2025-203102
Plesk 18.0 has Incorrect Access Control...
CVE-2025-66430
Plesk 18.0 has Incorrect Access Control...
CVE-2025-66430
Plesk 18.0 has Incorrect Access Control...
CVE-2025-66430
Plesk 18.0 has Incorrect Access Control...
Plesk 安全漏洞
Plesk is a web hosting control panel from the Swiss company Plesk. A security vulnerability exists in Plesk version 18.0 that stems from improper access control...
CVE-2025-66430
Plesk 18.0 has Incorrect Access Control...
CVE-2025-66430
Summary: CVE-2025-66430 affects Plesk 18.0 through 18.0.74 in the Password-Protected Directories feature. An authenticated attacker with limited privileges can inject arbitrary directives into Apache configuration files, leading to root-privilege command execution and potential full server compro...
CVE-2025-66431
WebPros Plesk before 18.0.73.5 and 18.0.74 before 18.0.74.2 on Linux allows remote authenticated users to execute arbitrary code as root via domain creation. The attacker needs "Create and manage sites" with "Domains management" and "Subdomains management."...
CVE-2025-66431
WebPros Plesk before 18.0.73.5 and 18.0.74 before 18.0.74.2 on Linux allows remote authenticated users to execute arbitrary code as root via domain creation. The attacker needs "Create and manage sites" with "Domains management" and "Subdomains management."...
CVE-2025-66431
WebPros Plesk before 18.0.73.5 and 18.0.74 before 18.0.74.2 on Linux allows remote authenticated users to execute arbitrary code as root via domain creation. The attacker needs "Create and manage sites" with "Domains management" and "Subdomains management."...
CVE-2025-66431
CVE-2025-66431 affects WebPros Plesk on Linux, prior to 18.0.73.5 and before 18.0.74.2 in the 18.x branch. Flaw in the domain creation mechanism allows remote authenticated users to execute arbitrary code as root when they have Create and manage sites with Domains management and Subdomains manage...
WebPros Plesk 安全漏洞
WebPros Plesk is a web hosting platform from WebPros, Inc. A security vulnerability exists in WebPros Plesk versions prior to 18.0.73.5 and versions prior to 18.0.74 through 18.0.74.2, which stems from a flaw in the domain creation functionality that could lead to remote code execution...