Parallels : Security Vulnerabilities, CVEs, Published In 2011 (Sql injection)
SQL injection vulnerability in the Control Panel in Parallels Plesk Panel 10.4.4_build20111103.18 allows remote attackers to execute arbitrary SQL commands via a certificateslist cookie to notification@/.
Max CVSS
7.5
EPSS Score
0.12%
Published
2011-12-16
Updated
2017-08-29
Multiple SQL injection vulnerabilities in the Site Editor (aka SiteBuilder) feature in Parallels Plesk Small Business Panel 10.2.0 allow remote attackers to execute arbitrary SQL commands via crafted input to a PHP script, as demonstrated by Wizard/Edit/Html and certain other files.
Max CVSS
7.5
EPSS Score
0.13%
Published
2011-12-16
Updated
2017-08-29
Multiple SQL injection vulnerabilities in Parallels Plesk Small Business Panel 10.2.0 allow remote attackers to execute arbitrary SQL commands via crafted input to a PHP script, as demonstrated by domains/sitebuilder_edit.php and certain other files.
Max CVSS
7.5
EPSS Score
0.13%
Published
2011-12-16
Updated
2017-08-29
Multiple SQL injection vulnerabilities in the Control Panel in Parallels Plesk Panel 10.2.0 build 20110407.20 allow remote attackers to execute arbitrary SQL commands via crafted input to a PHP script, as demonstrated by file-manager/ and certain other files.
Max CVSS
7.5
EPSS Score
0.13%
Published
2011-12-16
Updated
2019-04-22
Multiple SQL injection vulnerabilities in the Server Administration Panel in Parallels Plesk Panel 10.2.0_build1011110331.18 allow remote attackers to execute arbitrary SQL commands via crafted input to a PHP script, as demonstrated by login_up.php3 and certain other files.
Max CVSS
7.5
EPSS Score
0.13%
Published
2011-12-16
Updated
2019-04-22
5 vulnerabilities found