mailing list archives
Plesk Control Panel <= 8.0.0 XSS vulnerability
From: vuln.invent () gmail com
Date: 16 Jul 2006 05:42:43 -0000
Product: Plesk control panel
Version: <= 8.0.0
Vendor: SWSoft Inc.
VULNERABILITY CLASS: XSS
Plesk is comprehensive server management software developed specifically for the Hosting Service Industry with the
assistance of Web hosting professionals.
An attacker can exploit it by compromising the values of the parameter
"file" in filemanager.php.
This can be used to take advantage of the trust between a client and server
the client's machine when client is logged into control panel.
- Plesk Control Panel <= 8.0.0 XSS vulnerability vuln . invent (Jul 17)