Parallels Parallels Plesk Small Business Panel : Security vulnerabilities, CVEs xss, cross site scripting published in 2011

Copy

CVE-2011-4764

Multiple cross-site scripting (XSS) vulnerabilities in the Site Editor (aka SiteBuilder) feature in Parallels Plesk Small Business Panel 10.2.0 allow remote attackers to inject arbitrary web script or HTML via crafted input to a PHP script, as demonstrated by Wizard/Edit/Modules/Image and certain other files.

Max CVSS

4.3

EPSS Score

0.13%

Published

2011-12-16

Updated

2017-08-29

CVE-2011-4754

Multiple cross-site scripting (XSS) vulnerabilities in Parallels Plesk Small Business Panel 10.2.0 allow remote attackers to inject arbitrary web script or HTML via crafted input to a PHP script, as demonstrated by smb/app/available/id/apscatalog/ and certain other files.

Max CVSS

4.3

EPSS Score

0.13%

Published

2011-12-16

Updated

2017-08-29

2 vulnerabilities found

This web site uses cookies for managing your session, storing preferences, website analytics and additional purposes described in our privacy policy.
By using this web site you are agreeing to CVEdetails.com terms of use!