Parallels Plesk Small Business Panel Security Vulnerabilities and Issues — Parallels Plesk Small Business Panel CVE List

Lucene search

ParallelsParallels Plesk Small Business Panel

3 matches found

CVE•added 2011/12/16 11:55 a.m.•38 views

CVE-2011-4765

The Site Editor (aka SiteBuilder) feature in Parallels Plesk Small Business Panel 10.2.0 does not include the HTTPOnly flag in a Set-Cookie header for a cookie, which makes it easier for remote attackers to obtain potentially sensitive information via script access to this cookie, as demonstrated b...

4.3CVSS6.3AI score0.0025EPSS

CVE•added 2011/12/16 11:55 a.m.•32 views

CVE-2011-4764

Multiple cross-site scripting (XSS) vulnerabilities in the Site Editor (aka SiteBuilder) feature in Parallels Plesk Small Business Panel 10.2.0 allow remote attackers to inject arbitrary web script or HTML via crafted input to a PHP script, as demonstrated by Wizard/Edit/Modules/Image and certain o...

4.3CVSS5.9AI score0.00225EPSS

CVE•added 2011/12/16 11:55 a.m.•29 views

CVE-2011-4754

Multiple cross-site scripting (XSS) vulnerabilities in Parallels Plesk Small Business Panel 10.2.0 allow remote attackers to inject arbitrary web script or HTML via crafted input to a PHP script, as demonstrated by smb/app/available/id/apscatalog/ and certain other files.

4.3CVSS5.9AI score0.00225EPSS