Home page logo

bugtraq logo Bugtraq mailing list archives

Plesk Control Panel <= 8.0.0 XSS vulnerability
From: vuln.invent () gmail com
Date: 16 Jul 2006 05:42:43 -0000

Product: Plesk control panel

Version: <= 8.0.0

Vendor: SWSoft Inc.

URL: http://www.swsoft.com/en/products/plesk/


[Product Description]

Plesk is comprehensive server management software developed specifically for the Hosting Service Industry with the 
assistance of Web hosting professionals.


An attacker can exploit it by compromising the values of the parameter
"file" in filemanager.php.

This can be used to take advantage of the trust between a client and server 
allowing the malicious user to execute malicious JavaScript on 
the client's machine when client is logged into control panel.





  By Date           By Thread  

Current thread:
  • Plesk Control Panel <= 8.0.0 XSS vulnerability vuln . invent (Jul 17)
[ Nmap | Sec Tools | Mailing Lists | Site News | About/Contact | Advertising | Privacy ]